PT-2020-17486 · Mantisbt · Mantisbt

D3Vpoo1

Published

2020-12-30

Updated

2022-05-24

CVE-2020-35849

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions MantisBT versions prior to 2.24.4

Description An issue in MantisBT allows an unprivileged attacker to view the Summary field of private issues and bugnotes revisions, potentially gaining access to confidential information. This is achieved via the bugnote id parameter in the bug revision view page.php file.

Recommendations For versions prior to 2.24.4, update to version 2.24.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the bug revision view page.php file to minimize the risk of exploitation. Avoid using the bugnote id parameter in the affected page until the issue is resolved.

Exploit

Fix

Incorrect Authorization

IDOR

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-863CWE-639

Related Identifiers

CVE-2020-35849

GHSA-7J8M-FM49-XGMG

Affected Products

Mantisbt

PT-2020-17486 · Mantisbt · Mantisbt

CVE-2020-35849

Weakness Enumeration

Related Identifiers

Affected Products

References · 7