Lucene search
Ubuntu.comUB:CVE-2015-6506HistorySep 03, 2015 - 12:00 a.m.
CVE-2015-6506
2015-09-0300:00:00
ubuntu.com
ubuntu.com
11
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.003
Percentile
68.5%
Cross-site scripting (XSS) vulnerability in the cryptography interface in
Request Tracker (RT) before 4.2.12 allows remote attackers to inject
arbitrary web script or HTML via a crafted public key.
Notes
| Author | Note |
|---|---|
| tyhicks | RT 4.2.0 and above are affected up to 4.0.24, 4.2.12. |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 15.04 | noarch | request-tracker4 | < 4.2.8-3+deb8u1build0.15.04.1 | UNKNOWN |
Related
debiancve
debiancve
CVE-2015-6506
2015-09-03 14:59:08
cvelist
cvelist
CVE-2015-6506
2015-09-03 14:00:00
prion
prion
Cross site scripting
2015-09-03 14:59:00
nvd
nvd
CVE-2015-6506
2015-09-03 14:59:08
cve
cve
CVE-2015-6506
2015-09-03 14:59:08
fedora
fedora
[SECURITY] Fedora 23 Update: rt-4.2.12-1.fc23
2015-08-25 16:21:04
[SECURITY] Fedora 21 Update: rt-4.2.12-1.fc21
2015-08-27 23:51:26
[SECURITY] Fedora 22 Update: rt-4.2.12-1.fc22
2015-08-27 18:32:37
openvas
openvas
Debian: Security Advisory (DSA-3335-1)
2015-08-12 00:00:00
Fedora Update for rt FEDORA-2015-13718
2015-08-28 00:00:00
Fedora Update for rt FEDORA-2015-13664
2015-08-28 00:00:00
nessus
nessus
Debian DSA-3335-1 : request-tracker4 - security update
2015-08-14 00:00:00
Fedora 21 : rt-4.2.12-1.fc21 (2015-13664)
2015-08-28 00:00:00
Fedora 22 : rt-4.2.12-1.fc22 (2015-13718)
2015-08-28 00:00:00
freebsd
freebsd
RT -- two XSS vulnerabilities
2015-08-12 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.003
Percentile
68.5%
Related for UB:CVE-2015-6506