Lucene search
PRIOn knowledge basePRION:CVE-2015-8473HistoryApr 12, 2016 - 2:59 p.m.
Design/Logic Flaw
2016-04-1214:59:00
PRIOn knowledge base
www.prio-n.com
2
The Issues API in Redmine before 2.6.8, 3.0.x before 3.0.6, and 3.1.x before 3.1.2 allows remote authenticated users to obtain sensitive information in changeset messages by leveraging permission to read issues with related changesets from other projects.
References
www.debian.org/security/2016/dsa-3529
www.securityfocus.com/bid/78621
github.com/redmine/redmine/commit/8d8f612fa368a72c56b63f7ce6b7e98cab9feb22
www.redmine.org/issues/21136
www.redmine.org/projects/redmine/wiki/Changelog_3_0
www.redmine.org/projects/redmine/wiki/Changelog_3_1
www.redmine.org/versions/105
Related
nvd
nvd
CVE-2015-8473
2016-04-12 14:59:04
debiancve
debiancve
CVE-2015-8473
2016-04-12 14:59:04
cve
cve
CVE-2015-8473
2016-04-12 14:59:04
ubuntucve
ubuntucve
CVE-2015-8473
2016-04-12 00:00:00
cvelist
cvelist
CVE-2015-8473
2016-04-12 14:00:00
freebsd
freebsd
redmine -- multiple vulnerabilities
2015-11-14 00:00:00
nessus
nessus
FreeBSD : redmine -- multiple vulnerabilities (be63533c-9ed7-11e5-8f5c-002590263bf5)
2015-12-10 00:00:00
Debian DSA-3529-1 : redmine - security update
2016-03-24 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-3529-1)
2016-03-22 00:00:00
Debian Security Advisory DSA 3529-1 (redmine - security update)
2016-03-23 00:00:00
debian
debian
[SECURITY] [DSA 3529-1] redmine security update
2016-03-23 18:51:01