Lucene search

[email protected]CVE-2012-1644

HistoryAug 28, 2012 - 5:55 p.m.

CVE-2012-1644

2012-08-2817:55:03

CWE-264

[email protected]

web.nvd.nist.gov

cve-2012-1644

drupal

organic groups

og vocabulary

remote authentication

administrator permissions

2.1 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:S/C:N/I:P/A:N

6.4 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.0%

JSON

The Organic Groups (OG) Vocabulary module 6.x-1.x before 6.x-1.2 for Drupal allows remote authenticated users with certain administrator permissions to modify the vocabularies of other groups via unspecified vectors.

Affected configurations

NVD

Node

gizraog_vocabMatch6.x-1.0

gizraog_vocabMatch6.x-1.0rc1

gizraog_vocabMatch6.x-1.1

gizraog_vocabMatch6.x-1.xdev

AND

drupaldrupalMatch-

CPENameOperatorVersion
gizra:og_vocabgizra og vocabeq6.x-1.0
gizra:og_vocabgizra og vocabeq6.x-1.1
gizra:og_vocabgizra og vocabeq6.x-1.x

CPE	Name	Operator	Version
gizra:og_vocab	gizra og vocab	eq	6.x-1.0
gizra:og_vocab	gizra og vocab	eq	6.x-1.1
gizra:og_vocab	gizra og vocab	eq	6.x-1.x

References

drupal.org/node/1441086

drupalcode.org/project/og_vocab.git/commitdiff/cd8de08

secunia.com/advisories/48020

www.openwall.com/lists/oss-security/2012/04/07/1

www.osvdb.org/79336

drupal.org/node/1441450

exchange.xforce.ibmcloud.com/vulnerabilities/53902

2.1 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:S/C:N/I:P/A:N

6.4 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.0%

JSON

Related for CVE-2012-1644

prion1 cvelist1 nvd1 drupal1