Unrated severityNVD Advisory· Published Jan 2, 2020· Updated Aug 6, 2024
CVE-2014-6275
CVE-2014-6275
Description
FusionForge before 5.3.2 use scripts that run under the shared Apache user, which is also used by project homepages by default. If project webpages are hosted on the same server than FusionForge, it can allow users to incorrectly access on-disk private data in FusionForge.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <5.3.2
- Red Hat/FusionForgev5Range: before 5.3.2
Patches
Vulnerability mechanics
References
2- lists.fusionforge.org/pipermail/fusionforge-general/2014-September/002824.htmlmitrex_refsource_MISC
- security-tracker.debian.org/tracker/CVE-2014-6275mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.