Executive Summary

Informations
NameCVE-2015-8537First vendor Publication2016-04-12
VendorCveLast vendor Modification2016-04-20

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

app/views/journals/index.builder in Redmine before 2.6.9, 3.0.x before 3.0.7, and 3.1.x before 3.1.3 allows remote attackers to obtain sensitive information by viewing an Atom feed.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8537

CWE : Common Weakness Enumeration

%idName
100 %CWE-200Information Exposure

CPE : Common Platform Enumeration

TypeDescriptionCount
Application82
Os1

Nessus® Vulnerability Scanner

DateDescription
2016-03-24Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3529.nasl - Type : ACT_GATHER_INFO
2015-12-10Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_21bc4d719ed811e58f5c002590263bf5.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
CONFIRM http://www.redmine.org/news/103
https://github.com/redmine/redmine/commit/7e423fb4538247d59e01958c48b491f196a...
DEBIAN http://www.debian.org/security/2016/dsa-3529

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
DateInformations
2019-07-23 12:01:29
  • Multiple Updates
2017-12-01 12:06:42
  • Multiple Updates
2017-06-01 12:01:46
  • Multiple Updates
2016-04-27 09:33:39
  • Multiple Updates
2016-04-21 00:25:38
  • Multiple Updates
2016-04-12 21:25:09
  • First insertion