5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
51.0%
This module enables you to easily manage your media assets and re-use them in all your content.
The module provided a βdebugβ context that gave access to all the atom properties, including all the fields attached to this atom, without applying the corresponding field restrictions.
This vulnerability is mitigated by the fact that only sites that added fields to an atom type and then restricted access to those fields are vulnerable.
Drupal core is not affected. If you do not use the contributed Scald: Media Management made easy module, there is nothing you need to do.
Install the latest version:
Also see the Scald: Media Management made easy project page.