CVE-2014-2552

2018-04-2716:00:00

mitre

www.cve.org

AI Score

9.7

Confidence

High

EPSS

0.005

Percentile

76.4%

JSON

Brookins Consulting (BC) Collected Information Export extension for eZ Publish 1.1.0 does not properly restrict access, which allows remote attackers to gain access to sensitive data.

References

exchange.xforce.ibmcloud.com/vulnerabilities/92129

github.com/brookinsconsulting/bccie/commit/d11811baccf265ff567dddca03cac70b65838a4f

www.trustwave.com/Resources/Security-Advisories/Advisories/TWSL2014-004/?fid=3853