Zanata 3.0.0 through 3.1.2 has RCE due to EL interpolation in logging
References
Link | Resource |
---|---|
https://access.redhat.com/security/cve/cve-2013-4486 | Third Party Advisory Vendor Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4486 | Issue Tracking Patch Vendor Advisory |
https://github.com/zanata/zanata-server/wiki/Security-advisories | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2019-12-03T14:43:19
Updated: 2019-12-03T14:45:11
Reserved: 2013-06-12T00:00:00
Link: CVE-2013-4486
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-12-03T15:15:12.793
Modified: 2019-12-05T21:10:12.007
Link: CVE-2013-4486
JSON object: View
Redhat Information
No data.
CWE