Unrated severityNVD Advisory· Published Dec 6, 2022· Updated Apr 23, 2025

CVE-2022-44030

Description

Redmine 5.x before 5.0.4 allows downloading of file attachments of any Issue or any Wiki page due to insufficient permission checks. Depending on the configuration, this may require login as a registered user.

Affected products

Redmine/Redminedescription
osv-coords
pkg:bitnami/redmine
Range: >= 5.0.0, < 5.0.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.redmine.org/news/139mitre
www.redmine.org/projects/redmine/wiki/Security_Advisoriesmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000