Summary
Bugzilla is prone to an information-disclosure vulnerability.
Exploits may allow attackers to obtain potentially sensitive information that may aid in other attacks.
Versions prior to Bugzilla 3.0.11, 3.2.6, 3.4.5, and 3.5.3 are affected.
Solution
Updates are available. Please see the references for details.
References
Severity
Classification
-
CVE CVE-2009-3989 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:P/I:N/A:N
Related Vulnerabilities