CVE-2013-0226

EPSS 0.37%
Published 19.03.2013 14:55:02
Last modified 11.04.2025 00:51:21
Source secalert@redhat.com
Teams watchlist Login
Open Login

The Keyboard Shortcut Utility module 7.x-1.x before 7.x-1.1 for Drupal does not properly check node restrictions, which allows (1) remote authenticated users with the "view shortcuts" permission to read nodes or (2) remote authenticated users with the "admin shortcuts" permission to read, edit, or delete nodes via unspecified vectors.

Affected products Warnungen 0 Metrics 2 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Zugec Ivan ≫ Keyboard Shortcut Utility Version7.x-1.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.37%	0.556

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6	6.8	6.4	AV:N/AC:M/Au:S/C:P/I:P/A:P

http://www.openwall.com/lists/oss-security/2013/01/25/4

https://drupal.org/node/1896752

https://nvd.nist.gov/vuln/detail/CVE-2013-0226

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-0226

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-0226

EUVD