CVE-2004-0704

high

Description

Unknown vulnerability in (1) duplicates.cgi and (2) buglist.cgi in Bugzilla 2.16.x before 2.16.6, 2.18 before 2.18rc1, when configured to hide products, allows remote attackers to view hidden products.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/16671

http://www.securityfocus.com/bid/10698

http://marc.info/?l=bugtraq&m=108965446813639&w=2

Details

Source: Mitre, NVD

Published: 2004-07-27

Updated: 2017-07-11

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

Detections

Analytics