Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2015-0048
HistoryJan 31, 2015 - 4:23 p.m.

Updated bugzilla packages fix CVE-2014-8630

2015-01-3116:23:52
Gentoo Foundation
advisories.mageia.org
20

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

EPSS

0.003

Percentile

72.1%

JSON

Updated bugzilla packages fix security vulnerability: Some code in Bugzilla does not properly utilize 3 arguments form for open() and it is possible for an account with editcomponents permissions to inject commands into product names and other attributes (CVE-2014-8630).

OSVersionArchitecturePackageVersionFilename
Mageia4noarchbugzilla< 4.4.8-1bugzilla-4.4.8-1.mga4

Related

nessus 6
ubuntucve 1
cvelist 1
cve 1
securityvulns 2
prion 1
openvas 3
freebsd 1
nvd 1
fedora 2
gentoo 1
nessus
nessus
Mandriva Linux Security Advisory : bugzilla (MDVSA-2015:030)
2015-02-06 00:00:00
FreeBSD : Bugzilla multiple security issues (dc2d76df-a595-11e4-9363-20cf30e32f6d)
2015-01-27 00:00:00
Fedora 21 : bugzilla-4.4.8-1.fc21.1 (2015-1713)
2015-02-16 00:00:00
ubuntucve
ubuntucve
CVE-2014-8630
2015-02-01 00:00:00
cvelist
cvelist
CVE-2014-8630
2015-02-01 15:00:00
cve
cve
CVE-2014-8630
2015-02-01 15:59:04
securityvulns
securityvulns
[ MDVSA-2015:030 ] bugzilla
2015-02-23 00:00:00
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2015-02-23 00:00:00
prion
prion
Design/Logic Flaw
2015-02-01 15:59:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0048)
2022-01-28 00:00:00
Fedora Update for bugzilla FEDORA-2015-1713
2015-02-15 00:00:00
Fedora Update for bugzilla FEDORA-2015-1699
2015-02-15 00:00:00
freebsd
freebsd
Bugzilla multiple security issues
2015-01-21 00:00:00
nvd
nvd
CVE-2014-8630
2015-02-01 15:59:04
fedora
fedora
[SECURITY] Fedora 21 Update: bugzilla-4.4.8-1.fc21.1
2015-02-15 03:24:32
[SECURITY] Fedora 20 Update: bugzilla-4.2.13-1.fc20
2015-02-15 03:25:05
gentoo
gentoo
Bugzilla: Multiple vulnerabilities
2016-07-20 00:00:00

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

EPSS

0.003

Percentile

72.1%

JSON
Related for MGASA-2015-0048
nessus6ubuntucve1cvelist1cve1securityvulns2prion1openvas3freebsd1nvd1fedora2gentoo1