CVE-2018-5123

Summary

A third party website can access information available to a user with access to a restricted bug entry using the image generation in report.cgi in all Bugzilla versions prior to 4.4.

Affected Software

VendorProductVersion RangeStatus
MozillaBugzillaAll versions prior to Bugzilla 4.4affected

Weaknesses

  • Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References