Lucene search
PRIOn knowledge basePRION:CVE-2014-1399HistoryApr 10, 2018 - 3:29 p.m.
Design/Logic Flaw
2018-04-1015:29:00
PRIOn knowledge base
www.prio-n.com
3
The entity wrapper access API in the Entity API module 7.x-1.x before 7.x-1.3 for Drupal might allow remote authenticated users to bypass intended access restrictions on referenced entities via unspecified vectors.
| CPE | Name | Operator | Version |
|---|---|---|---|
| entity_api | eq | 7.120.11 | |
| entity_api | eq | 7.120.10 | |
| entity_api | eq | 7.120.12 | |
| fedora | eq | 20 | |
| fedora | eq | 19 |
References
www.openwall.com/lists/oss-security/2014/01/09/3
www.securityfocus.com/bid/64729
bugzilla.redhat.com/show_bug.cgi?id=1050802
exchange.xforce.ibmcloud.com/vulnerabilities/90216
lists.fedoraproject.org/pipermail/package-announce/2014-January/126811.html
lists.fedoraproject.org/pipermail/package-announce/2014-January/126816.html
www.drupal.org/node/2169595
Related
cvelist
cvelist
CVE-2014-1399
2018-04-10 15:00:00
cve
cve
CVE-2014-1399
2018-04-10 15:29:00
nvd
nvd
CVE-2014-1399
2018-04-10 15:29:00
openvas
openvas
Fedora Update for drupal7-entity FEDORA-2014-0509
2014-02-03 00:00:00
Fedora Update for drupal7-entity FEDORA-2015-2826
2015-04-01 00:00:00
Fedora Update for drupal7-entity FEDORA-2014-0508
2014-01-20 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: drupal7-entity-1.6-1.fc20
2015-03-31 21:51:19
[SECURITY] Fedora 19 Update: drupal7-entity-1.3-1.fc19
2014-01-19 04:05:27
[SECURITY] Fedora 20 Update: drupal7-entity-1.3-1.fc20
2014-01-19 04:06:51
nessus
nessus
Fedora 19 : drupal7-entity-1.3-1.fc19 (2014-0508)
2014-01-20 00:00:00
Fedora 20 : drupal7-entity-1.3-1.fc20 (2014-0509)
2014-01-20 00:00:00
drupal
drupal
SA-CONTRIB-2014-001 - Entity API - Access Bypass
2014-01-08 00:00:00