Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-1591HistoryOct 01, 2012 - 12:55 a.m.
CVE-2012-1591
2012-10-0100:55:00
Debian Security Bug Tracker
security-tracker.debian.org
10
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
The image module in Drupal 7.x before 7.14 does not properly check permissions when caching derivative image styles of private images, which allows remote attackers to read private image styles.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | drupal7 | < 7.52-2+deb9u11 | drupal7_7.52-2+deb9u11_all.deb |
Related
cve
cve
CVE-2012-1591
2012-10-01 00:55:00
prion
prion
Code injection
2012-10-01 00:55:00
ubuntucve
ubuntucve
CVE-2012-1591
2012-10-01 00:00:00
nessus
nessus
Drupal 7.x < 7.13 Multiple Vulnerabilities
2016-10-28 00:00:00
Mandriva Linux Security Advisory : drupal (MDVSA-2013:074)
2013-04-20 00:00:00
drupal
drupal
SA-CORE-2012-002 - Drupal core multiple vulnerabilities
2012-05-02 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related for DEBIANCVE:CVE-2012-1591