Security Advisory

CVE-2005-3138

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-10-05 04:00:00

Last updated 2024-08-07 23:01:58

Assigner mitre

State PUBLISHED

Description

Bugzilla 2.18rc1 through 2.18.3, 2.19 through 2.20rc2, and 2.21 allows remote attackers to obtain sensitive information such as the list of installed products via the config.cgi file, which is accessible even when the requirelogin parameter is set.

← Browse all CVEs View on cve.org ↗