CVE-2015-8473
MEDIUM4.3EPSS 0.46%Published: 4/12/2016Modified: 4/28/2026
Also known as:DEBIAN-CVE-2015-8473
Description
The Issues API in Redmine before 2.6.8, 3.0.x before 3.0.6, and 3.1.x before 3.1.2 allows remote authenticated users to obtain sensitive information in changeset messages by leveraging permission to read issues with related changesets from other projects.
Affected packages (1)
- Debian/redminefrom 0, < 3.2.0-1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM4.3 | CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |