{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Bugzilla 2.17.x, 2.18 before 2.18.2, 2.19.x, and 2.20 before 2.20rc1 inserts a bug into the database before it is marked private, which introduces a race condition and allows attackers to access information about the bug via buglist.cgi before MySQL replication is complete."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2005-07-08T04:00:00Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=293159"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.bugzilla.org/security/2.18.1/"}, {"name": "1014428", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1014428"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-2174", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Bugzilla 2.17.x, 2.18 before 2.18.2, 2.19.x, and 2.20 before 2.20rc1 inserts a bug into the database before it is marked private, which introduces a race condition and allows attackers to access information about the bug via buglist.cgi before MySQL replication is complete."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://bugzilla.mozilla.org/show_bug.cgi?id=293159", "refsource": "CONFIRM", "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=293159"}, {"name": "http://www.bugzilla.org/security/2.18.1/", "refsource": "CONFIRM", "url": "http://www.bugzilla.org/security/2.18.1/"}, {"name": "1014428", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1014428"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T22:15:37.691Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=293159"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.bugzilla.org/security/2.18.1/"}, {"name": "1014428", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1014428"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-2174", "datePublished": "2005-07-08T04:00:00Z", "dateReserved": "2005-07-08T00:00:00Z", "dateUpdated": "2024-09-17T03:08:05.888Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mozilla:bugzilla:2.17.1:*:*:*:*:*:*:*", "matchCriteriaId": "BBCDA64F-C49A-4F5B-B285-4079D8E3A499", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:bugzilla:2.17.3:*:*:*:*:*:*:*", "matchCriteriaId": "85ED3457-CC21-4DB3-931F-677F723E1B2A", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:bugzilla:2.17.4:*:*:*:*:*:*:*", "matchCriteriaId": "6C8711D3-55CF-4131-BBAC-6BE07068219F", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:bugzilla:2.17.5:*:*:*:*:*:*:*", "matchCriteriaId": "DF54FFA5-5177-46E6-9AFA-BA3345C16E8A", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:bugzilla:2.17.6:*:*:*:*:*:*:*", "matchCriteriaId": "69D7EA7C-B401-4F5A-AC08-2199DD117403", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:bugzilla:2.17.7:*:*:*:*:*:*:*", "matchCriteriaId": "DC2DDC7C-CD2B-4597-A5E0-266A884958FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:bugzilla:2.18:*:*:*:*:*:*:*", "matchCriteriaId": "DDB99B2D-CA05-4BC0-BCA4-9B94DF248333", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:bugzilla:2.18:rc1:*:*:*:*:*:*", "matchCriteriaId": "3635C0E9-2E43-4BAE-8267-2BB2F68B03BD", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:bugzilla:2.18:rc2:*:*:*:*:*:*", "matchCriteriaId": "4869A709-AF79-49BD-A7D2-D48A8D79A085", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:bugzilla:2.18:rc3:*:*:*:*:*:*", "matchCriteriaId": "EAC72143-27C3-498F-AFAB-98AE043C0545", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:bugzilla:2.18.1:*:*:*:*:*:*:*", "matchCriteriaId": "BE5E8E72-D493-460D-B5A0-F90C291398A5", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:bugzilla:2.19:*:*:*:*:*:*:*", "matchCriteriaId": "725BD7BE-1769-4032-ADA8-9ED15528C770", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:bugzilla:2.19.1:*:*:*:*:*:*:*", "matchCriteriaId": "239D70F4-7D86-4A57-ACEF-440F68994FB6", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:bugzilla:2.19.2:*:*:*:*:*:*:*", "matchCriteriaId": "ABEE2C94-DA69-4A78-A15F-538383A7460E", "vulnerable": true}, {"criteria": "cpe:2.3:a:mozilla:bugzilla:2.19.3:*:*:*:*:*:*:*", "matchCriteriaId": "4F7CD64E-7FAA-40DC-B36E-8B7EB9D620FB", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Bugzilla 2.17.x, 2.18 before 2.18.2, 2.19.x, and 2.20 before 2.20rc1 inserts a bug into the database before it is marked private, which introduces a race condition and allows attackers to access information about the bug via buglist.cgi before MySQL replication is complete."}], "id": "CVE-2005-2174", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 4.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-07-08T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1014428"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.bugzilla.org/security/2.18.1/"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=293159"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1014428"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.bugzilla.org/security/2.18.1/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=293159"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}