7.5
CVE-2009-4044
- EPSS 1.36%
- Veröffentlicht 20.11.2009 19:30:01
- Zuletzt bearbeitet 16.06.2026 23:12:53
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe Web Services module 6.x for Drupal does not perform the expected access control, which allows remote attackers to make unspecified use of an API via unknown vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Bruno Massa ≫ Web Services Version6.x-1.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.36% | 0.681 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://drupal.org/node/630244
http://www.securityfocus.com/bid/37000
http://www.vupen.com/english/advisories/2009/3218
https://exchange.xforce.ibmcloud.com/vulnerabilities/54249