Lucene search
PRIOn knowledge basePRION:CVE-2015-3234HistoryJun 22, 2015 - 7:59 p.m.
Design/Logic Flaw
2015-06-2219:59:00
PRIOn knowledge base
www.prio-n.com
7 High
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.005 Low
EPSS
Percentile
76.3%
The OpenID module in Drupal 6.x before 6.36 and 7.x before 7.38 allows remote attackers to log into other users’ accounts by leveraging an OpenID identity from certain providers, as demonstrated by the Verisign, LiveJournal, and StackExchange providers.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 8.0 | |
| debian_linux | eq | 7.0 | |
| drupal | eq | 7.0 alpha5 | |
| drupal | eq | 7.0 dev | |
| drupal | eq | 7.0 alpha7 | |
| drupal | eq | 6.0 beta2 | |
| drupal | eq | 6.33 | |
| drupal | eq | 7.16 | |
| drupal | eq | 6.0 rc2 | |
| drupal | eq | 7.21 |
Related
cve
cve
CVE-2015-3234
2015-06-22 19:59:00
debiancve
debiancve
CVE-2015-3234
2015-06-22 19:59:00
ubuntucve
ubuntucve
CVE-2015-3234
2015-06-22 00:00:00
nessus
nessus
Drupal 6.x < 6.36 OpenID Security Bypass
2015-06-19 00:00:00
FreeBSD : drupal -- multiple vulnerabilities (d605edb1-1616-11e5-a000-d050996490d0)
2015-06-19 00:00:00
Drupal 7.x < 7.38 Multiple Vulnerabilities
2016-04-08 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3291-1] drupal7 security update
2015-06-21 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0253)
2015-10-15 00:00:00
Fedora Update for drupal7 FEDORA-2015-10290
2015-07-07 00:00:00
Fedora Update for drupal7 FEDORA-2015-10189
2015-07-03 00:00:00
drupal
drupal
Drupal Core - Critical - Multiple Vulnerabilities - SA-CORE-2015-002
2015-06-17 00:00:00
mageia
mageia
Updated drupal package fixes security vulnerability
2015-07-01 15:40:22
osv
osv
drupal7 - security update
2015-06-18 00:00:00
freebsd
freebsd
drupal -- multiple vulnerabilities
2015-06-17 00:00:00
debian
debian
[SECURITY] [DSA 3291-1] drupal7 security update
2015-06-18 17:52:57
[SECURITY] [DSA 3291-1] drupal7 security update
2015-06-18 17:52:57
7 High
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.005 Low
EPSS
Percentile
76.3%
Related for PRION:CVE-2015-3234