Описание
RT (aka Request Tracker) before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to hijack sessions via an RSS feed URL.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| devel | DNE | |
| disco | DNE | |
| esm-infra-legacy/trusty | DNE | |
| lucid | ignored | end of life |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needs-triage |
| trusty | DNE |
Показывать по
10
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 4.2.8-3 |
| bionic | not-affected | 4.2.8-3 |
| cosmic | not-affected | 4.2.8-3 |
| devel | not-affected | 4.2.8-3 |
| disco | not-affected | 4.2.8-3 |
| esm-apps/bionic | not-affected | 4.2.8-3 |
| esm-apps/xenial | not-affected | 4.2.8-3 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needed] |
| lucid | DNE | |
| precise | ignored | end of life |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 57%
0.00347
Низкий
6.4 Medium
CVSS2
Связанные уязвимости
nvd
почти 11 лет назад
RT (aka Request Tracker) before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to hijack sessions via an RSS feed URL.
debian
почти 11 лет назад
RT (aka Request Tracker) before 4.0.23 and 4.2.x before 4.2.10 allows ...
github
больше 3 лет назад
RT (aka Request Tracker) before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to hijack sessions via an RSS feed URL.
EPSS
Процентиль: 57%
0.00347
Низкий
6.4 Medium
CVSS2