Lucene search
FreeBSD1F0D0024-AC9C-11EE-8E91-1C697A013F4BHistoryOct 14, 2023 - 12:00 a.m.
mantis -- multiple vulnerabilities
2023-10-1400:00:00
vuxml.freebsd.org
16
mantis
multiple vulnerabilities
guzzlehttp/psr7
dokuwiki integration
security release
maintenance release
information leakage
cve-2023-29197
cve-2023-44394
unix
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
AI Score
7.3
Confidence
Low
EPSS
0.003
Percentile
69.9%
Mantis 2.25.8 release reports:
Security and maintenance release
0032432: Update guzzlehttp/psr7 to 1.9.1 (CVE-2023-29197)
0032981: Information Leakage on DokuWiki Integration (CVE-2023-44394)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | mantis-php74 | < 2.25.8,1 | UNKNOWN |
| FreeBSD | any | noarch | mantis-php80 | < 2.25.8,1 | UNKNOWN |
| FreeBSD | any | noarch | mantis-php81 | < 2.25.8,1 | UNKNOWN |
| FreeBSD | any | noarch | mantis-php82 | < 2.25.8,1 | UNKNOWN |
| FreeBSD | any | noarch | mantis-php83 | < 2.25.8,1 | UNKNOWN |
Related
nessus
nessus
FreeBSD : mantis -- multiple vulnerabilities (1f0d0024-ac9c-11ee-8e91-1c697a013f4b)
2024-01-10 00:00:00
Ubuntu 22.04 LTS : php-nyholm-psr7 vulnerability (USN-6671-1)
2024-02-29 00:00:00
Fedora 37 : php-nyholm-psr7 (2023-c29ae4c76f)
2023-04-28 00:00:00
prion
prion
Design/Logic Flaw
2023-10-16 22:15:00
Design/Logic Flaw
2023-04-17 22:15:00
cvelist
cvelist
CVE-2023-44394 Disclosure of project names to unauthorized users in MantisBT
2023-10-16 21:00:46
CVE-2023-29197 Improper header name validation in guzzlehttp/psr7
2023-04-17 21:08:46
github
github
MantisBT may disclose project names to unauthorized users
2023-10-17 14:20:36
Improper header name validation in guzzlehttp/psr7
2023-04-19 18:25:53
HTTP Multiline Header Termination
2023-04-24 22:42:39
osv
osv
CVE-2023-44394
2023-10-16 22:15:12
MantisBT may disclose project names to unauthorized users
2023-10-17 14:20:36
php-nyholm-psr7 vulnerability
2024-02-29 16:02:17
veracode
veracode
Information Disclosure
2023-10-18 06:19:54
HTTP Request Smuggling
2023-04-19 11:10:06
cve
cve
CVE-2023-44394
2023-10-16 22:15:12
CVE-2023-29197
2023-04-17 22:15:09
nvd
nvd
CVE-2023-44394
2023-10-16 22:15:12
CVE-2023-29197
2023-04-17 22:15:09
openvas
openvas
MantisBT < 2.25.8 Information Disclosure Vulnerability - Windows
2023-11-29 00:00:00
MantisBT < 2.25.8 Information Disclosure Vulnerability - Linux
2023-11-29 00:00:00
Debian: Security Advisory (DLA-3705-1)
2024-01-12 00:00:00
vulnrichment
vulnrichment
CVE-2023-44394 Disclosure of project names to unauthorized users in MantisBT
2023-10-16 21:00:46
fedora
fedora
[SECURITY] Fedora 38 Update: php-nyholm-psr7-1.7.0-1.fc38
2023-04-29 02:53:18
[SECURITY] Fedora 37 Update: php-nyholm-psr7-1.6.1-1.fc37
2023-04-28 02:04:03
friendsofphp
friendsofphp
Improper header validation
2023-04-17 16:00:00
Improper Input Validation in headers
2023-04-17 16:00:00
Improper Input Validation in headers
2023-04-17 16:00:00
ubuntu
ubuntu
php-nyholm-psr7 vulnerability
2024-02-29 00:00:00
php-guzzlehttp-psr7 vulnerabilities
2024-02-29 00:00:00
debiancve
debiancve
CVE-2023-29197
2023-04-17 22:15:09
ubuntucve
ubuntucve
CVE-2023-29197
2023-04-17 00:00:00
debian
debian
[SECURITY] [DLA 3705-1] php-guzzlehttp-psr7 security update
2023-12-31 22:52:23
mageia
mageia
Updated mediawiki packages fix security vulnerability
2023-07-27 01:07:49
freebsd
freebsd
mediawiki -- multiple vulnerabilities
2023-04-21 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
AI Score
7.3
Confidence
Low
EPSS
0.003
Percentile
69.9%
Related for 1F0D0024-AC9C-11EE-8E91-1C697A013F4B