Main Vulnerability Database Vulnerabilities #VU35847

Input validation error in MantisBT - CVE-2018-9839

Published: June 6, 2019 / Updated: August 8, 2020

Vulnerability identifier: #VU35847

CSH Severity: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2018-9839

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
MantisBT

Software vendor:
mantisbt.sourceforge.net

Description

The vulnerability allows a remote authenticated user to gain access to sensitive information.

An issue was discovered in MantisBT through 1.3.14, and 2.0.0. Using a crafted request on bug_report_page.php (modifying the 'm_id' parameter), any user with REPORTER access or above is able to view any private issue's details (summary, description, steps to reproduce, additional information) when cloning it. By checking the 'Copy issue notes' and 'Copy attachments' checkboxes and completing the clone operation, this data also becomes public (except private notes).

Remediation

Install update from vendor's website.

Input validation error in MantisBT - CVE-2018-9839

Description

Remediation

External links

Please verify you're human