Vulnerabilities > CVE-2021-30163

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
redmine
debian
NVD
Published: 2021-04-06
Updated: 2022-06-28

Summary

Redmine before 4.0.8 and 4.1.x before 4.1.2 allows attackers to discover the names of private projects if issue-journal details exist that have changes to project_id values.

Vulnerable Configurations

Part Description Count
Application
Redmine
171
OS
Debian
1

References