Lucene search

[email protected]CVE-2011-4927

HistoryOct 08, 2012 - 6:55 p.m.

CVE-2011-4927

2012-10-0818:55:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2011-4927

redmine

vulnerability

remote

authenticated

sensitive information

5.8 Medium

AI Score

Confidence

Low

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

51.7%

JSON

Unspecified vulnerability in the bazaar repository adapter in Redmine 1.0.x before 1.0.5 allows remote authenticated users to obtain sensitive information via unknown vectors.

CPENameOperatorVersion
redmine:redmineredmineeq1.0.0
redmine:redmineredmineeq1.0.3
redmine:redmineredmineeq1.0.2
redmine:redmineredmineeq1.0.1
redmine:redmineredmineeq1.0.4

References

www.debian.org/security/2011/dsa-2261

www.openwall.com/lists/oss-security/2012/01/06/5

www.openwall.com/lists/oss-security/2012/01/06/7

www.redmine.org/news/49

5.8 Medium

AI Score

Confidence

Low

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

51.7%

JSON

Related for CVE-2011-4927

cvelist1 prion1 ubuntucve1 debiancve1 openvas2

CPE	Name	Operator	Version
redmine:redmine	redmine	eq	1.0.0
redmine:redmine	redmine	eq	1.0.3
redmine:redmine	redmine	eq	1.0.2
redmine:redmine	redmine	eq	1.0.1
redmine:redmine	redmine	eq	1.0.4