Description
The system stores the username and password from the login form after submitting the request. This could allow an attacker with access to the platform to return to the browser and view the login credentials.
Published: 2026-06-12
Score: 5.3 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The Redmine application stores usernames and passwords after login. This flaw results in stored credential data that can be read by any user with platform access. The vulnerability is a CWE‑257 exposure of data that can lead to credential theft and account hijacking, compromising confidentiality of user credentials.

Affected Systems

Redmine belongs to the Redmine product line. Instances running any version older than 6.0.7, 5.1.10 or 5.0.14 are affected. The issue is documented for Redmine 5.0 through 5.1 and for 6.0 releases prior to the fixed versions.

Risk and Exploitability

The CVSS score of 5.3 indicates moderate severity. No EPSS data is available, and the vulnerability is not listed in the CISA KEV catalog. Based on the description, the likely attack vector requires local or network access to the Redmine instance, with an attacker needing sufficient privileges to view the stored credential data. The impact is exposure of login credentials that could be used for unauthorized account access.

Generated by OpenCVE AI on June 12, 2026 at 14:51 UTC.

Remediation

Vendor Solution

The vulnerability has been fixed by Redmine team in versions 6.0.7, 5.1.10 and 5.0.14.

OpenCVE Recommended Actions

  • Upgrade Redmine to at least version 6.0.7, 5.1.10, or 5.0.14 to apply the vendor fix.
  • Limit platform access so that only trusted administrators can view login session details.
  • Implement or enforce password rotation for all user accounts to reduce potential damage from captured credentials.

Generated by OpenCVE AI on June 12, 2026 at 14:51 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 12 Jun 2026 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 12 Jun 2026 13:45:00 +0000

Type Values Removed Values Added
Description The system stores the username and password from the login form after submitting the request. This could allow an attacker with access to the platform to return to the browser and view the login credentials.
Title Stored credentials in Redmine
First Time appeared Redmine
Redmine redmine
Weaknesses CWE-257
CPEs cpe:2.3:a:redmine:redmine:*:*:*:*:*:*:*:*
cpe:2.3:a:redmine:redmine:5.0.14:*:*:*:*:*:*:*
cpe:2.3:a:redmine:redmine:5.1.10:*:*:*:*:*:*:*
cpe:2.3:a:redmine:redmine:6.0.7:*:*:*:*:*:*:*
Vendors & Products Redmine
Redmine redmine
References
Metrics cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Redmine Redmine
cve-icon MITRE

Status: PUBLISHED

Assigner: INCIBE

Published:

Updated: 2026-06-12T14:00:11.755Z

Reserved: 2026-02-03T15:43:30.850Z

Link: CVE-2026-1836

cve-icon Vulnrichment

Updated: 2026-06-12T14:00:07.862Z

cve-icon NVD

Status : Deferred

Published: 2026-06-12T14:16:30.817

Modified: 2026-06-12T16:00:18.860

Link: CVE-2026-1836

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-12T15:00:09Z

Weaknesses
  • CWE-257

    Storing Passwords in a Recoverable Format