vulnerability
Ubuntu: USN-7692-1 (CVE-2024-3262): Request Tracker vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:S/C:C/I:N/A:N) | Apr 4, 2024 | Jul 17, 2025 | Aug 20, 2025 |
Severity
5
CVSS
(AV:L/AC:L/Au:S/C:C/I:N/A:N)
Published
Apr 4, 2024
Added
Jul 17, 2025
Modified
Aug 20, 2025
Description
Information exposure vulnerability in RT software affecting version 4.4.1. This vulnerability allows an attacker with local access to the device to retrieve sensitive information about the application, such as vulnerability tickets, because the application stores the information in the browser cache, leading to information exposure despite session termination.
Solutions
ubuntu-pro-upgrade-request-tracker5ubuntu-pro-upgrade-rt5-fcgiubuntu-pro-upgrade-rt5-standalone
References
- CVE-2024-3262
- https://attackerkb.com/topics/CVE-2024-3262
- CWE-200
- UBUNTU-USN-7692-1
- URL-https://ubuntu.com/security/notices/USN-7692-1
- URL-https://www.cve.org/CVERecord?id=CVE-2024-3262
- URL-https://www.incibe.es/incibe-cert/alerta-temprana/avisos/vulnerabilidad-de-exposicion-de-informacion-en-request-tracker-rt
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.