Lucene search

PRIOn knowledge basePRION:CVE-2008-4689

HistoryOct 22, 2008 - 6:00 p.m.

Design/Logic Flaw

2008-10-2218:00:00

PRIOn knowledge base

www.prio-n.com

6.9 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.5%

JSON

Mantis before 1.1.3 does not unset the session cookie during logout, which makes it easier for remote attackers to hijack sessions.

CPENameOperatorVersion
mantiseq1.0.6
mantiseq1.0.2
mantisle1.1.2
mantiseq1.0.4
mantiseq1.0.8
mantiseq0.19.3
mantiseq1.0.7
mantiseq1.0.1
mantiseq1.0.3
mantiseq1.0.5

Name	Operator	Version
mantis	eq	1.0.6
mantis	eq	1.0.2
mantis	le	1.1.2
mantis	eq	1.0.4
mantis	eq	1.0.8
mantis	eq	0.19.3
mantis	eq	1.0.7
mantis	eq	1.0.1
mantis	eq	1.0.3
mantis	eq	1.0.5

Rows per page:

1-10 of 121

References

secunia.com/advisories/32975

www.gentoo.org/security/en/glsa/glsa-200812-07.xml

www.mantisbt.org/bugs/changelog_page.php

www.mantisbt.org/bugs/file_download.php?file_id=1988&type=bug

www.mantisbt.org/bugs/view.php?id=9664

www.openwall.com/lists/oss-security/2008/10/20/1

exchange.xforce.ibmcloud.com/vulnerabilities/46084

6.9 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.5%

JSON

Related for PRION:CVE-2008-4689