← volver
CVE-2021-31864

CVE-2021-31864

EPSS 1.2%
Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows attackers to bypass the add_issue_notes permission requirement by leveraging the incoming mail handler.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://lists.debian.org/debian-lts-announce/2021/05/msg00013.htmlhttps://www.redmine.org/news/131https://www.redmine.org/projects/redmine/wiki/Security_Advisories