mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
77 lines
2.4 KiB
JSON
77 lines
2.4 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2012-4733",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Request Tracker (RT) 4.x before 4.0.13 does not properly enforce the DeleteTicket and \"custom lifecycle transition\" permission, which allows remote authenticated users with the ModifyTicket permission to delete tickets via unspecified vectors."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "[rt-announce] 20130522 Security vulnerabilities in RT",
|
|
"refsource": "MLIST",
|
|
"url": "http://lists.bestpractical.com/pipermail/rt-announce/2013-May/000226.html"
|
|
},
|
|
{
|
|
"name": "93611",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/93611"
|
|
},
|
|
{
|
|
"name": "[rt-announce] 20130522 RT 4.0.13 released",
|
|
"refsource": "MLIST",
|
|
"url": "http://lists.bestpractical.com/pipermail/rt-announce/2013-May/000227.html"
|
|
},
|
|
{
|
|
"name": "53522",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/53522"
|
|
}
|
|
]
|
|
}
|
|
} |