Lucene search

GoogleOSV:GHSA-V642-MH27-8J6M

HistoryOct 17, 2023 - 2:20 p.m.

MantisBT may disclose project names to unauthorized users

2023-10-1714:20:36

Google

osv.dev

mantisbt

vulnerability

project names

unauthorized users

access-level checks

wiki integration

patches

workarounds

development

version 2.25.8

references.

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

EPSS

0.001

Percentile

21.1%

JSON

Impact

Due to insufficient access-level checks on the Wiki redirection page, any user can reveal private Projects’ names, by accessing wiki.php with sequentially incremented IDs.

Patches

Patch under development. The vulnerability will be fixed in MantisBT version 2.25.8.

Workarounds

Disable wiki integration ( $g_wiki_enable = OFF;)

References

https://mantisbt.org/bugs/view.php?id=32981

References

github.com/mantisbt/mantisbt

github.com/mantisbt/mantisbt/commit/65c44883f9d24f3ccef066fb523c93d8fdd7afc1

github.com/mantisbt/mantisbt/security/advisories/GHSA-v642-mh27-8j6m

mantisbt.org/bugs/view.php?id=32981

nvd.nist.gov/vuln/detail/CVE-2023-44394

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

EPSS

0.001

Percentile

21.1%

JSON

Related for OSV:GHSA-V642-MH27-8J6M