Design/Logic Flaw

2013-02-2411:48:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

67.7%

JSON

The Bugzilla::Search::build_subselect function in Bugzilla 2.x and 3.x before 3.6.13 and 3.7.x and 4.0.x before 4.0.10 generates different error messages for invalid product queries depending on whether a product exists, which allows remote attackers to discover private product names by using debug mode for a query.

CPENameOperatorVersion
bugzillaeq3.6.9
bugzillaeq3.6.1
bugzillaeq3.6.0
bugzillaeq3.6.3
bugzillaeq3.6
bugzillaeq3.6.11
bugzillaeq3.6.4
bugzillaeq3.6.8
bugzillaeq3.6 rc1
bugzillaeq3.6.7

Name	Operator	Version
bugzilla	eq	3.6.9
bugzilla	eq	3.6.1
bugzilla	eq	3.6.0
bugzilla	eq	3.6.3
bugzilla	eq	3.6
bugzilla	eq	3.6.11
bugzilla	eq	3.6.4
bugzilla	eq	3.6.8
bugzilla	eq	3.6 rc1
bugzilla	eq	3.6.7