A third party website can access information available to a user with access to a restricted bug entry using the image generation in report.cgi in all Bugzilla versions prior to 4.4.
Max CVSS
8.8
EPSS Score
0.13%
Published
2019-04-29
Updated
2019-05-08
1 vulnerabilities found