VDB

CVE-2021-31865

CVE-2021-31865 PUBLISHED

Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows users to circumvent the allowed filename extensions of uploaded attachments.

EPSS 0.39% · 60.5th percentile

Risk Scores

EPSS Score
0.39%
60.5th percentile

Affected Products

VendorProductVersions
Bitnamiredmine0, 4.1.0, 4.2.0
Bitnamiredmine0, 4.1.0, 4.2.0

Exploit Intelligence

Timeline

  • Apr 28, 2021 EPSS Score
  • Apr 28, 2021 CVE Published
  • Jul 1, 2021 EPSS Score
  • Sep 1, 2021 EPSS Score
  • Nov 3, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Mar 7, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • May 8, 2022 EPSS Score
  • Jul 10, 2022 EPSS Score
  • Sep 11, 2022 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›