Lucene search

PRIOn knowledge basePRION:CVE-2013-2197

HistoryAug 28, 2013 - 10:55 p.m.

Code injection

2013-08-2822:55:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

58.0%

JSON

The Login Security module 6.x-1.x before 6.x-1.3 and 7.x-1.x before 7.x-1.3 for Drupal, when using the login delay option, allows remote attackers to cause a denial of service (CPU consumption) via a large number of failed login attempts.

CPENameOperatorVersion
login_securityeq6.x-1.0 rc1
login_securityeq6.x-1.0 beta1
login_securityeq6.120.10
login_securityeq6.120.11
login_securityeq6.120.12
login_securityeq6.120.13
login_securityeq6.x-1.x dev
login_securityeq7.120.10
login_securityeq7.120.11
login_securityeq7.120.12

Name	Operator	Version
login_security	eq	6.x-1.0 rc1
login_security	eq	6.x-1.0 beta1
login_security	eq	6.120.10
login_security	eq	6.120.11
login_security	eq	6.120.12
login_security	eq	6.120.13
login_security	eq	6.x-1.x dev
login_security	eq	7.120.10
login_security	eq	7.120.11
login_security	eq	7.120.12

Rows per page:

1-10 of 111

References

www.openwall.com/lists/oss-security/2013/06/20/3

drupal.org/node/2023503

drupal.org/node/2023507

drupal.org/node/2023585

7.2 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

58.0%

JSON

Related for PRION:CVE-2013-2197