Vulnerability Description
An issue was discovered in MantisBT through 1.3.14, and 2.0.0. Using a crafted request on bug_report_page.php (modifying the 'm_id' parameter), any user with REPORTER access or above is able to view any private issue's details (summary, description, steps to reproduce, additional information) when cloning it. By checking the 'Copy issue notes' and 'Copy attachments' checkboxes and completing the clone operation, this data also becomes public (except private notes).
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mantisbt | Mantisbt | <= 1.3.14 |
Related Weaknesses (CWE)
References
- https://github.com/mantisbt/mantisbt/commit/1fbcd9bca2f2c77cb61624d36ddee4b3802cPatchThird Party Advisory
- https://mantisbt.org/bugs/view.php?id=24221ExploitIssue TrackingThird Party Advisory
- https://github.com/mantisbt/mantisbt/commit/1fbcd9bca2f2c77cb61624d36ddee4b3802cPatchThird Party Advisory
- https://mantisbt.org/bugs/view.php?id=24221ExploitIssue TrackingThird Party Advisory
FAQ
What is CVE-2018-9839?
CVE-2018-9839 is a vulnerability with a CVSS score of 6.5 (MEDIUM). An issue was discovered in MantisBT through 1.3.14, and 2.0.0. Using a crafted request on bug_report_page.php (modifying the 'm_id' parameter), any user with REPORTER access or above is able to view a...
How severe is CVE-2018-9839?
CVE-2018-9839 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-9839?
Check the references section above for vendor advisories and patch information. Affected products include: Mantisbt Mantisbt.