Improper Access Control in MantisBT Allows Unauthorized File Access
CVE-2020-25781

4.3MEDIUM

Key Information:

Vendor

Mantisbt

Status
Mantisbt
Vendor
CVE Published:
30 September 2020

What is CVE-2020-25781?

An improper access control issue has been identified in the file_download.php component of MantisBT, affecting versions prior to 2.24.3. This vulnerability allows users who do not have permission to view private issue notes to directly access and download attachments linked to these notes via the file download URL. As a result, sensitive information meant to be restricted can be exposed, potentially leading to a data breach. It is crucial for users of MantisBT to update to the latest version to mitigate this risk and secure their sensitive data.

References

https://mantisbt.org/bugs/view.php?id=27039
x_refsource_MISC
http://github.com/mantisbt/mantisbt/commit/5595c90f11c481...
x_refsource_MISC
http://github.com/mantisbt/mantisbt/commit/9de20c09e5a557...
x_refsource_MISC

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.