CVE-2020-29605

Description

An issue was discovered in MantisBT before 2.24.4. Due to insufficient access-level checks, any logged-in user allowed to perform Group Actions can get access to the Summary fields of private Issues via bug_arr[]= in a crafted bug_actiongroup_page.php URL. (The target Issues can have Private view status, or belong to a private Project.)

How to fix CVE-2020-29605

To remediate CVE-2020-29605, upgrade the affected package to a fixed version below.

• Packagist/mantisbt/mantisbt—upgrade to 2.24.4 or later

Is CVE-2020-29605 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 2.24.4

References (5)

• ADVISORYnvd.nist.gov/vuln/detail/CVE-2020-29605
• PATCHgithub.com/mantisbt/mantisbt
• WEBgithub.com/mantisbt/mantisbt/commit/9322c8c9f57fb72f3b8b033889a6a09c441d5be0
• WEBmantisbt.org/bugs/view.php?id=27357
• WEB