CVE-2005-4523 [Medium] | Information Disclosure in Mantis

CVE-2005-4523 is rated High Exploit Risk (62.4/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 1.78%). 1 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +1.01% over the last day, indicating growing attacker interest. Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

EDB-ID	Source	Kind	Published	Link
—	nvd_ref	exploit_tag		Exploit-DB ↗

EDB-ID

Source

Kind

Published

Link

—

nvd_ref

exploit_tag

Exploit-DB ↗

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2026-06-15	0.76%	1.78%	+1.01%
2	2025-03-30	1.14%	0.76%	-0.38%
3	2025-03-29	—	1.14%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2026-06-15

0.76%

1.78%

+1.01%

2025-03-30

1.14%

0.76%

-0.38%

2025-03-29

—

1.14%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
5.0	2.0	MEDIUM	`AV:N/AC:L/Au:N/C:P/I:N/A:N` Click to expand Access vector (AV:N) Can be exploited remotely over network reachability. Access complexity (AC:L) Exploitation conditions are straightforward and predictable. Authentication (AU:N) No authentication is required. Confidentiality impact (C:P) Partial confidentiality impact. Integrity impact (I:N) No integrity impact. Availability impact (A:N) No availability impact.	10.0	2.9	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

5.0

2.0

MEDIUM

AV:N/AC:L/Au:N/C:P/I:N/A:N Click to expand

Access vector (AV:N): Can be exploited remotely over network reachability.
Access complexity (AC:L): Exploitation conditions are straightforward and predictable.
Authentication (AU:N): No authentication is required.
Confidentiality impact (C:P): Partial confidentiality impact.
Integrity impact (I:N): No integrity impact.
Availability impact (A:N): No availability impact.

10.0

2.9

[email protected]

OS Trackers for CVE-2005-4523

vendor	priority	summary	link
`ubuntu`	medium	CVE-2005-4523 medium priority: Ubuntu including 1 source packages (mantis), 4 status rows across 4 suites (dapper, edgy, feisty, upstream): released 3, needs-triage 1.	https://ubuntu.com/security/CVE-2005-4523

Affected software / configurations for CVE-2005-4523

Vendor	Product	Version	Raw CPE
mantis	mantis	<= 1.0.0_rc3	cpe:2.3:a:mantis:mantis::::::::
mantis	mantis	0.9	cpe:2.3:a:mantis:mantis:0.9:::::::*
mantis	mantis	0.9.1	cpe:2.3:a:mantis:mantis:0.9.1:::::::*
mantis	mantis	0.10	cpe:2.3:a:mantis:mantis:0.10:::::::*
mantis	mantis	0.10.1	cpe:2.3:a:mantis:mantis:0.10.1:::::::*
mantis	mantis	0.10.2	cpe:2.3:a:mantis:mantis:0.10.2:::::::*
mantis	mantis	0.11	cpe:2.3:a:mantis:mantis:0.11:::::::*
mantis	mantis	0.11.1	cpe:2.3:a:mantis:mantis:0.11.1:::::::*
mantis	mantis	0.12	cpe:2.3:a:mantis:mantis:0.12:::::::*
mantis	mantis	0.13	cpe:2.3:a:mantis:mantis:0.13:::::::*
mantis	mantis	0.13.1	cpe:2.3:a:mantis:mantis:0.13.1:::::::*
mantis	mantis	0.14	cpe:2.3:a:mantis:mantis:0.14:::::::*
mantis	mantis	0.14.1	cpe:2.3:a:mantis:mantis:0.14.1:::::::*
mantis	mantis	0.14.2	cpe:2.3:a:mantis:mantis:0.14.2:::::::*
mantis	mantis	0.14.3	cpe:2.3:a:mantis:mantis:0.14.3:::::::*
mantis	mantis	0.14.4	cpe:2.3:a:mantis:mantis:0.14.4:::::::*
mantis	mantis	0.14.5	cpe:2.3:a:mantis:mantis:0.14.5:::::::*
mantis	mantis	0.14.6	cpe:2.3:a:mantis:mantis:0.14.6:::::::*
mantis	mantis	0.14.7	cpe:2.3:a:mantis:mantis:0.14.7:::::::*
mantis	mantis	0.14.8	cpe:2.3:a:mantis:mantis:0.14.8:::::::*
mantis	mantis	0.15	cpe:2.3:a:mantis:mantis:0.15:::::::*
mantis	mantis	0.15.1	cpe:2.3:a:mantis:mantis:0.15.1:::::::*
mantis	mantis	0.15.2	cpe:2.3:a:mantis:mantis:0.15.2:::::::*
mantis	mantis	0.15.3	cpe:2.3:a:mantis:mantis:0.15.3:::::::*
mantis	mantis	0.15.4	cpe:2.3:a:mantis:mantis:0.15.4:::::::*
mantis	mantis	0.15.5	cpe:2.3:a:mantis:mantis:0.15.5:::::::*
mantis	mantis	0.15.6	cpe:2.3:a:mantis:mantis:0.15.6:::::::*
mantis	mantis	0.15.7	cpe:2.3:a:mantis:mantis:0.15.7:::::::*
mantis	mantis	0.15.8	cpe:2.3:a:mantis:mantis:0.15.8:::::::*
mantis	mantis	0.15.9	cpe:2.3:a:mantis:mantis:0.15.9:::::::*
mantis	mantis	0.15.10	cpe:2.3:a:mantis:mantis:0.15.10:::::::*
mantis	mantis	0.15.11	cpe:2.3:a:mantis:mantis:0.15.11:::::::*
mantis	mantis	0.15.12	cpe:2.3:a:mantis:mantis:0.15.12:::::::*
mantis	mantis	0.16	cpe:2.3:a:mantis:mantis:0.16:::::::*
mantis	mantis	0.16.0	cpe:2.3:a:mantis:mantis:0.16.0:::::::*
mantis	mantis	0.16.1	cpe:2.3:a:mantis:mantis:0.16.1:::::::*
mantis	mantis	0.17	cpe:2.3:a:mantis:mantis:0.17:::::::*
mantis	mantis	0.17.0	cpe:2.3:a:mantis:mantis:0.17.0:::::::*
mantis	mantis	0.17.1	cpe:2.3:a:mantis:mantis:0.17.1:::::::*
mantis	mantis	0.17.2	cpe:2.3:a:mantis:mantis:0.17.2:::::::*
mantis	mantis	0.17.3	cpe:2.3:a:mantis:mantis:0.17.3:::::::*
mantis	mantis	0.17.4	cpe:2.3:a:mantis:mantis:0.17.4:::::::*
mantis	mantis	0.17.4a	cpe:2.3:a:mantis:mantis:0.17.4a:::::::*
mantis	mantis	0.17.5	cpe:2.3:a:mantis:mantis:0.17.5:::::::*
mantis	mantis	0.18	cpe:2.3:a:mantis:mantis:0.18:::::::*
mantis	mantis	0.18.0_rc1	cpe:2.3:a:mantis:mantis:0.18.0_rc1:::::::*
mantis	mantis	0.18.0a2	cpe:2.3:a:mantis:mantis:0.18.0a2:::::::*
mantis	mantis	0.18.0a3	cpe:2.3:a:mantis:mantis:0.18.0a3:::::::*
mantis	mantis	0.18.0a4	cpe:2.3:a:mantis:mantis:0.18.0a4:::::::*
mantis	mantis	0.18.2	cpe:2.3:a:mantis:mantis:0.18.2:::::::*
mantis	mantis	0.18.3	cpe:2.3:a:mantis:mantis:0.18.3:::::::*
mantis	mantis	0.18a1	cpe:2.3:a:mantis:mantis:0.18a1:::::::*
mantis	mantis	0.19.0	cpe:2.3:a:mantis:mantis:0.19.0:::::::*
mantis	mantis	0.19.0_rc1	cpe:2.3:a:mantis:mantis:0.19.0_rc1:::::::*
mantis	mantis	0.19.0a	cpe:2.3:a:mantis:mantis:0.19.0a:::::::*
mantis	mantis	0.19.0a1	cpe:2.3:a:mantis:mantis:0.19.0a1:::::::*
mantis	mantis	0.19.0a2	cpe:2.3:a:mantis:mantis:0.19.0a2:::::::*
mantis	mantis	0.19.1	cpe:2.3:a:mantis:mantis:0.19.1:::::::*
mantis	mantis	0.19.2	cpe:2.3:a:mantis:mantis:0.19.2:::::::*
mantis	mantis	0.19.3	cpe:2.3:a:mantis:mantis:0.19.3:::::::*
mantis	mantis	1.0.0_rc1	cpe:2.3:a:mantis:mantis:1.0.0_rc1:::::::*
mantis	mantis	1.0.0_rc2	cpe:2.3:a:mantis:mantis:1.0.0_rc2:::::::*
mantis	mantis	1.0.0a1	cpe:2.3:a:mantis:mantis:1.0.0a1:::::::*
mantis	mantis	1.0.0a2	cpe:2.3:a:mantis:mantis:1.0.0a2:::::::*
mantis	mantis	1.0.0a3	cpe:2.3:a:mantis:mantis:1.0.0a3:::::::*

References for CVE-2005-4523

URL	Tags
http://secunia.com/advisories/18181/	Patch Vendor Advisory
http://secunia.com/advisories/18221	Vendor Advisory
http://secunia.com/advisories/18481
http://sourceforge.net/project/shownotes.php?release_id=377934&group_id=14963
http://www.debian.org/security/2005/dsa-944
http://www.trapkit.de/advisories/TKADV2005-11-002.txt	Exploit Vendor Advisory
http://www.vupen.com/english/advisories/2005/3064

URL

CVE-2005-4523

Public exploit references (Exploit-DB) for CVE-2005-4523

Exploit prediction scoring system (EPSS) score for CVE-2005-4523

Common vulnerability scoring system (CVSS) metrics for CVE-2005-4523

Weakness enumeration for CVE-2005-4523

OS Trackers for CVE-2005-4523

Affected software / configurations for CVE-2005-4523

References for CVE-2005-4523