Lucene search
HistoryJan 02, 2012 - 7:55 p.m.
CVE-2011-3668
bugzilla
csrf
vulnerability
cve-2011-3668
security
6.9 Medium
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
68.5%
Cross-site request forgery (CSRF) vulnerability in post_bug.cgi in Bugzilla 2.x, 3.x, and 4.x before 4.2rc1 allows remote attackers to hijack the authentication of arbitrary users for requests that create bug reports.
Related
prion
prion
Cross site request forgery (csrf)
2012-01-02 19:55:00
ubuntucve
ubuntucve
CVE-2011-3668
2012-01-02 00:00:00
openvas
openvas
Fedora Update for bugzilla FEDORA-2012-0328
2012-01-20 00:00:00
Fedora Update for bugzilla FEDORA-2012-0328
2012-01-20 00:00:00
FreeBSD Ports: bugzilla
2012-02-13 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: bugzilla-3.6.7-1.fc15
2012-01-19 01:30:41
[SECURITY] Fedora 16 Update: bugzilla-4.0.3-1.fc16
2012-01-19 01:30:20
nessus
nessus
Fedora 16 : bugzilla-4.0.3-1.fc16 (2012-0301)
2012-01-19 00:00:00
Fedora 15 : bugzilla-3.6.7-1.fc15 (2012-0328)
2012-01-19 00:00:00
freebsd
freebsd
bugzilla -- multiple vulnerabilities
2011-11-28 00:00:00
6.9 Medium
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
68.5%
Related for CVE-2011-3668