CVE-2012-2691 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:P/I:P/A:P
redhat	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 87%

Vendor	Product	Version
mantisbt	mantisbt	𝑥 ≤ 1.2.10
mantisbt	mantisbt	0.18.0
mantisbt	mantisbt	0.19.0
mantisbt	mantisbt	0.19.0:a1
mantisbt	mantisbt	0.19.0:a2
mantisbt	mantisbt	0.19.0:rc1
mantisbt	mantisbt	0.19.1
mantisbt	mantisbt	0.19.2
mantisbt	mantisbt	0.19.3
mantisbt	mantisbt	0.19.4
mantisbt	mantisbt	0.19.5
mantisbt	mantisbt	1.0.0
mantisbt	mantisbt	1.0.0:a1
mantisbt	mantisbt	1.0.0:a2
mantisbt	mantisbt	1.0.0:a3
mantisbt	mantisbt	1.0.0:rc1
mantisbt	mantisbt	1.0.0:rc2
mantisbt	mantisbt	1.0.0:rc3
mantisbt	mantisbt	1.0.0:rc4
mantisbt	mantisbt	1.0.0:rc5
mantisbt	mantisbt	1.0.1
mantisbt	mantisbt	1.0.2
mantisbt	mantisbt	1.0.3
mantisbt	mantisbt	1.0.4
mantisbt	mantisbt	1.0.5
mantisbt	mantisbt	1.0.7
mantisbt	mantisbt	1.0.8
mantisbt	mantisbt	1.0.9
mantisbt	mantisbt	1.1.0
mantisbt	mantisbt	1.1.0:a1
mantisbt	mantisbt	1.1.0:a2
mantisbt	mantisbt	1.1.0:a3
mantisbt	mantisbt	1.1.0:a4
mantisbt	mantisbt	1.1.0:rc1
mantisbt	mantisbt	1.1.0:rc2
mantisbt	mantisbt	1.1.0:rc3
mantisbt	mantisbt	1.1.1
mantisbt	mantisbt	1.1.2
mantisbt	mantisbt	1.1.3
mantisbt	mantisbt	1.1.4
mantisbt	mantisbt	1.1.5
mantisbt	mantisbt	1.1.6
mantisbt	mantisbt	1.1.7
mantisbt	mantisbt	1.1.8
mantisbt	mantisbt	1.1.9
mantisbt	mantisbt	1.2.0
mantisbt	mantisbt	1.2.0:alpha1
mantisbt	mantisbt	1.2.0:alpha2
mantisbt	mantisbt	1.2.0:alpha3
mantisbt	mantisbt	1.2.0:rc1
mantisbt	mantisbt	1.2.0:rc2
mantisbt	mantisbt	1.2.1
mantisbt	mantisbt	1.2.2
mantisbt	mantisbt	1.2.3
mantisbt	mantisbt	1.2.4
mantisbt	mantisbt	1.2.5
mantisbt	mantisbt	1.2.6
mantisbt	mantisbt	1.2.7
mantisbt	mantisbt	1.2.8
mantisbt	mantisbt	1.2.9

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

mantis

zesty	dne
yakkety	dne
xenial	dne
wily	dne
vivid	dne
utopic	dne
trusty	dne
saucy	not-affected
raring	not-affected
quantal	not-affected
precise	ignored
oneiric	ignored
natty	Fixed 1.1.8+dfsg-10squeeze2build0.11.04.1 released
lucid	ignored
hardy	ignored

Known Exploits!

Common Weakness Enumeration

CWE-264 -

References

http://lists.fedoraproject.org/pipermail/package-announce/2012-November/092926.html

http://lists.fedoraproject.org/pipermail/package-announce/2012-November/093063.html

http://lists.fedoraproject.org/pipermail/package-announce/2012-November/093064.html

http://secunia.com/advisories/49414

http://secunia.com/advisories/51199

http://security.gentoo.org/glsa/glsa-201211-01.xml

http://www.mantisbt.org/bugs/changelog_page.php?version_id=148

http://www.mantisbt.org/bugs/view.php?id=14340

http://www.openwall.com/lists/oss-security/2012/06/09/1

http://www.openwall.com/lists/oss-security/2012/06/11/6

http://www.securityfocus.com/bid/53907

http://www.securityfocus.com/bid/56467

https://exchange.xforce.ibmcloud.com/vulnerabilities/76180

https://github.com/mantisbt/mantisbt/commit/175d973105fe9f03a37ced537b742611631067e0

https://github.com/mantisbt/mantisbt/commit/edc8142bb8ac0ac0df1a3824d78c15f4015d959e

http://lists.fedoraproject.org/pipermail/package-announce/2012-November/092926.html

http://lists.fedoraproject.org/pipermail/package-announce/2012-November/093063.html

http://lists.fedoraproject.org/pipermail/package-announce/2012-November/093064.html

http://secunia.com/advisories/49414

http://secunia.com/advisories/51199

http://security.gentoo.org/glsa/glsa-201211-01.xml

http://www.mantisbt.org/bugs/changelog_page.php?version_id=148

http://www.mantisbt.org/bugs/view.php?id=14340

http://www.openwall.com/lists/oss-security/2012/06/09/1

http://www.openwall.com/lists/oss-security/2012/06/11/6

http://www.securityfocus.com/bid/53907

http://www.securityfocus.com/bid/56467

https://exchange.xforce.ibmcloud.com/vulnerabilities/76180

https://github.com/mantisbt/mantisbt/commit/175d973105fe9f03a37ced537b742611631067e0

https://github.com/mantisbt/mantisbt/commit/edc8142bb8ac0ac0df1a3824d78c15f4015d959e