CVE-2020-29604
First published: Fri Jan 29 2021(Updated: )
An issue was discovered in MantisBT before 2.24.4. A missing access check in bug_actiongroup.php allows an attacker (with rights to create new issues) to use the COPY group action to create a clone, including all bugnotes and attachments, of any private issue (i.e., one having Private view status, or belonging to a private Project) via the bug_arr[] parameter. This provides full access to potentially confidential information.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mantisbt Mantisbt | <2.24.4 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2020-29604.
What is the severity rating of CVE-2020-29604?
CVE-2020-29604 has a severity rating of medium with a CVSS score of 6.5.
How can an attacker exploit this vulnerability?
An attacker (with rights to create new issues) can exploit this vulnerability by using the COPY group action in bug_actiongroup.php to create a clone of any private issue, including all bugnotes and attachments.
What is the affected software for CVE-2020-29604?
The affected software for CVE-2020-29604 is MantisBT versions before 2.24.4.
Is Microsoft Windows affected by CVE-2020-29604?
No, Microsoft Windows is not affected by CVE-2020-29604.
- collector/nvd-index
- agent/type
- agent/references
- agent/remedy
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/tags
- agent/first-publish-date
- agent/event
- agent/description
- vendor/mantisbt
- canonical/mantisbt mantisbt
- vendor/microsoft
- canonical/microsoft windows