Bugzilla Group Security Bypass Vulnerability

Bugzilla Group Security Bypass Vulnerability

CVE-2001-1407 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Bugzilla before 2.14 allows Bugzilla users to bypass group security checks by marking a bug as the duplicate of a restricted bug, which adds the user to the CC list of the restricted bug and allows the user to view the bug.

Learn more about our User Device Pen Test.