7.5
CVE-2014-1475
- EPSS 1.53%
- Veröffentlicht 24.01.2014 18:55:05
- Zuletzt bearbeitet 29.04.2026 01:13:23
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The OpenID module in Drupal 6.x before 6.30 and 7.x before 7.26 allows remote OpenID users to authenticate as other users via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.53% | 0.714 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/56260
http://secunia.com/advisories/56601
http://www.debian.org/security/2014/dsa-2847
http://www.debian.org/security/2014/dsa-2851
http://www.mandriva.com/security/advisories?name=MDVSA-2014:031
http://www.securityfocus.com/bid/64973
https://drupal.org/SA-CORE-2014-001