CVE-2013-3370

描述

Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13 does not properly restrict access to private callback components, which allows remote attackers to have an unspecified impact via a direct request.

受影響套件(1)

• Debian/request-tracker4from 0, < 4.0.12-2

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-3370