Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-4732HistoryNov 11, 2012 - 1:00 p.m.
CVE-2012-4732
2012-11-1113:00:59
Debian Security Bug Tracker
security-tracker.debian.org
10
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.001
Percentile
39.2%
Cross-site request forgery (CSRF) vulnerability in Request Tracker (RT) 3.8.12 and other versions before 3.8.15, and 4.0.6 and other versions before 4.0.8, allows remote attackers to hijack the authentication of users for requests that toggle ticket bookmarks.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | request-tracker4 | < 4.0.7-2 | request-tracker4_4.0.7-2_all.deb |
| Debian | 11 | all | request-tracker4 | < 4.0.7-2 | request-tracker4_4.0.7-2_all.deb |
| Debian | 999 | all | request-tracker4 | < 4.0.7-2 | request-tracker4_4.0.7-2_all.deb |
| Debian | 13 | all | request-tracker4 | < 4.0.7-2 | request-tracker4_4.0.7-2_all.deb |
Related
ubuntucve
ubuntucve
CVE-2012-4732
2012-11-11 00:00:00
cvelist
cvelist
CVE-2012-4732
2012-11-11 11:00:00
cve
cve
CVE-2012-4732
2012-11-11 13:00:59
prion
prion
Cross site request forgery (csrf)
2012-11-11 13:00:00
nvd
nvd
CVE-2012-4732
2012-11-11 13:00:59
fedora
fedora
[SECURITY] Fedora 18 Update: rt3-3.8.15-1.fc18
2012-11-08 05:43:51
[SECURITY] Fedora 17 Update: rt3-3.8.15-1.fc17
2012-11-08 01:55:15
[SECURITY] Fedora 16 Update: rt3-3.8.15-1.fc16
2012-11-08 01:53:54
debian
debian
[SECURITY] [DSA 2567-1] request-tracker3.8 security update
2012-10-26 20:12:00
openvas
openvas
Fedora Update for rt3 FEDORA-2012-17174
2012-11-09 00:00:00
Fedora Update for rt3 FEDORA-2012-17218
2012-11-09 00:00:00
Debian Security Advisory DSA 2567-1 (request-tracker3.8)
2012-10-29 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2567-1] request-tracker3.8 security update
2012-10-30 00:00:00
freebsd
freebsd
RT -- Multiple Vulnerabilities
2012-10-26 00:00:00
osv
osv
request-tracker3.8 - several
2012-10-26 00:00:00
nessus
nessus
Debian DSA-2567-1 : request-tracker3.8 - several vulnerabilities
2012-10-29 00:00:00
Fedora 18 : rt3-3.8.15-1.fc18 (2012-17143)
2012-11-08 00:00:00
Fedora 16 : rt3-3.8.15-1.fc16 (2012-17218)
2012-11-08 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.001
Percentile
39.2%
Related for DEBIANCVE:CVE-2012-4732