CVE-2009-4079

Опубликовано: 25 нояб. 2009

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6.8

Описание

Cross-site request forgery (CSRF) vulnerability in Redmine 0.8.5 and earlier allows remote attackers to hijack the authentication of users for requests that delete a ticket via unspecified vectors.

Релиз	Статус	Примечание
artful	not-affected	0.9.0svn2902-1
bionic	not-affected	0.9.0svn2902-1
dapper	DNE
devel	not-affected	0.9.0svn2902-1
esm-apps/bionic	not-affected	0.9.0svn2902-1
esm-apps/xenial	not-affected	0.9.0svn2902-1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [0.9.0svn2902-1]]
hardy	DNE
intrepid	DNE
jaunty	DNE

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2009-4079

EPSS

Процентиль: 50%

0.00269

Низкий

6.8 Medium

CVSS2

Связанные уязвимости

CVE-2009-4079

nvd

около 16 лет назад

Cross-site request forgery (CSRF) vulnerability in Redmine 0.8.5 and earlier allows remote attackers to hijack the authentication of users for requests that delete a ticket via unspecified vectors.

CVE-2009-4079

debian

около 16 лет назад

Cross-site request forgery (CSRF) vulnerability in Redmine 0.8.5 and e ...

GHSA-rm8f-p7g6-p8p4

github

больше 3 лет назад

Cross-site request forgery (CSRF) vulnerability in Redmine 0.8.5 and earlier allows remote attackers to hijack the authentication of users for requests that delete a ticket via unspecified vectors.

EPSS

Процентиль: 50%

0.00269

Низкий

6.8 Medium

CVSS2

CVE-2009-4079

Описание

Пакет redmine

Ссылки на источники

Связанные уязвимости