Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2018/05/04 12:0 a.m.31 views

Debian DSA-4191-1 : redmine - security update

Multiple vulnerabilities were discovered in Redmine, a project management web application. They could lead to remote code execution, information disclosure or cross-site scripting attacks. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

8.8CVSS6.2AI score0.02825EPSS
Exploits0References20
UbuntuCve
UbuntuCve
added 2017/10/18 2:29 a.m.26 views

CVE-2017-15575

In Redmine before 3.2.6 and 3.3.x before 3.3.3, Redmine.pm lacks a check for whether the Repository module is enabled in a project's settings, which might allow remote attackers to obtain sensitive differences information or possibly have unspecified other impact...

7.5CVSS7.2AI score0.01288EPSS
Exploits0References4
NVD
NVD
added 2017/10/18 2:29 a.m.16 views

CVE-2017-15575

In Redmine before 3.2.6 and 3.3.x before 3.3.3, Redmine.pm lacks a check for whether the Repository module is enabled in a project's settings, which might allow remote attackers to obtain sensitive differences information or possibly have unspecified other impact...

7.5CVSS7.7AI score0.01288EPSS
Exploits0References3
CVE
CVE
added 2017/10/18 2:0 a.m.87 views

CVE-2017-15575

CVE-2017-15575 affects Redmine prior to 3.2.6 and 3.3.x prior to 3.3.3. Root cause: Redmine.pm does not verify if the Repository module is enabled in a project’s settings, allowing remote attackers to obtain sensitive diff information (and possibly other impact). Impact: information disclosure. M...

7.5CVSS8.1AI score0.01288EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder