Remote Code Execution in Redmine by Attacking Repository Module Settings
CVE-2017-15575

7.3HIGH

Key Information:

Vendor

Redmine

Status
Redmine
Vendor
CVE Published:
18 October 2017

What is CVE-2017-15575?

In Redmine versions prior to 3.2.6 and 3.3.x up to 3.3.3, a flaw exists where the Redmine.pm script does not verify if the Repository module is enabled in project settings. This oversight may permit remote attackers to extract sensitive difference information related to code or documents contained within the repository. The lack of adequate validation increases the risk of potentially broader negative impacts, emphasizing the need for users to ensure they are running updated versions to mitigate risks associated with this vulnerability.

References

https://www.redmine.org/projects/redmine/wiki/Security_Ad...
x_refsource_CONFIRM
https://www.redmine.org/issues/24307
x_refsource_CONFIRM
https://www.debian.org/security/2018/dsa-4191
vendor-advisoryx_refsource_DEBIAN

CVSS V3.1

Score:
7.3
Severity:
HIGH
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.