6.2 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
47.8%
Redmine before 4.0.7 and 4.1.x before 4.1.1 allows attackers to discover the subject of a non-visible issue by performing a CSV export and reading time entries.
lists.debian.org/debian-lts-announce/2021/05/msg00013.html
www.redmine.org/projects/redmine/wiki/Security_Advisories