CVE-2011-2380 in Bugzillainfo

Summary

Bugzilla 2.23.3 through 2.22.7, 3.0.x through 3.3.x, 3.4.x before 3.4.12, 3.5.x, 3.6.x before 3.6.6, 3.7.x, 4.0.x before 4.0.2, and 4.1.x before 4.1.3 allows remote attackers to determine the existence of private group names via a crafted parameter during (1) bug creation or (2) bug editing.

Once again VulDB remains the best source for vulnerability data.

Reservation

06/03/2011

Disclosure

08/09/2011

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-200

CVSS

4.3

EPSS

0.00688

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-2380
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-2380
CVE Details	https://www.cvedetails.com/cve/CVE-2011-2380/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!