6.8
CVE-2012-2721
- EPSS 2.6%
- Veröffentlicht 27.06.2012 00:55:04
- Zuletzt bearbeitet 16.06.2026 23:41:58
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
LoginThe default views in the Organic Groups (OG) module 6.x-2.x before 6.x-2.4 for Drupal do not properly check permissions when all users have the "access content" permission removed, which allows remote attackers to bypass access restrictions and possibly have other unspecified impact.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Moshe Weitzman ≫ Organic Groups Version6.x-2.0
Moshe Weitzman ≫ Organic Groups Version6.x-2.0 Updaterc1
Moshe Weitzman ≫ Organic Groups Version6.x-2.0 Updaterc2
Moshe Weitzman ≫ Organic Groups Version6.x-2.0 Updaterc3
Moshe Weitzman ≫ Organic Groups Version6.x-2.1
Moshe Weitzman ≫ Organic Groups Version6.x-2.2
Moshe Weitzman ≫ Organic Groups Version6.x-2.3
Moshe Weitzman ≫ Organic Groups Version6.x-2.x Updatedev
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.6% | 0.833 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
http://www.openwall.com/lists/oss-security/2012/06/14/3
http://drupal.org/node/1619736
http://drupal.org/node/1619810
http://drupalcode.org/project/og.git/commitdiff/1485708
http://secunia.com/advisories/49397
http://www.osvdb.org/82728
http://www.securityfocus.com/bid/53838
https://exchange.xforce.ibmcloud.com/vulnerabilities/76150