CVE-2004-0703

High

7.5/10

Summary

Unknown vulnerability in the administrative controls in Bugzilla 2.17.1 through 2.17.7 allows users with "grant membership" privileges to grant memberships to groups that the user does not control.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: PARTIAL

References

Advisory Timeline

Published Jul 27, 2004

CVE-2004-0703

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS