CVE Vulnerabilities

CVE-2002-0808

Published: Aug 12, 2002 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, when performing a mass change, sets the groupset of all bugs to the groupset of the first bug, which could inadvertently cause insecure groupset permissions to be assigned to some bugs.

Affected Software

Name Vendor Start Version End Version
Bugzilla Mozilla 2.14 2.14
Bugzilla Mozilla 2.14.1 2.14.1
Bugzilla Mozilla 2.16 2.16
Bugzilla Mozilla 2.16 2.16

References