Access Control Flaw in MantisBT Leading to Data Exposure
CVE-2020-35849

7.5HIGH

Key Information:

Vendor: Mantisbt
Status: Mantisbt
Vendor: CVE Published:; 30 December 2020

What is CVE-2020-35849?

An issue in MantisBT versions prior to 2.24.4 allows unprivileged users to exploit an incorrect access check in the bug_revision_view_page.php file. This vulnerability enables attackers to view the Summary field of private issues and obtain bugnotes revisions by manipulating the bugnote_id parameter. As a result, sensitive information may be exposed, posing a risk to confidentiality for affected users.

References

https://mantisbt.org/bugs/view.php?id=27370

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 30, 2020
Vulnerability Reserved
Dec 30, 2020

Mantisbt

What is CVE-2020-35849?

References

CVSS V3.1

Timeline