Lucene search

PRIOn knowledge basePRION:CVE-2015-6661

HistoryAug 24, 2015 - 2:59 p.m.

Authentication flaw

2015-08-2414:59:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.007 Low

EPSS

Percentile

80.3%

JSON

Drupal 6.x before 6.37 and 7.x before 7.39 allows remote attackers to obtain sensitive node titles by reading the menu.

CPENameOperatorVersion
drupaleq7.0 alpha5
drupaleq7.0 dev
drupaleq7.0 alpha7
drupaleq6.0 beta2
drupaleq6.33
drupaleq7.16
drupaleq7.21
drupaleq6.2
drupaleq7.0 rc2
drupaleq7.18

Name	Operator	Version
drupal	eq	7.0 alpha5
drupal	eq	7.0 dev
drupal	eq	7.0 alpha7
drupal	eq	6.0 beta2
drupal	eq	6.33
drupal	eq	7.16
drupal	eq	7.21
drupal	eq	6.2
drupal	eq	7.0 rc2
drupal	eq	7.18

Rows per page:

1-10 of 951

References

www.debian.org/security/2015/dsa-3346

www.securitytracker.com/id/1033358

lists.fedoraproject.org/pipermail/package-announce/2015-August/165061.html

lists.fedoraproject.org/pipermail/package-announce/2015-September/165690.html

lists.fedoraproject.org/pipermail/package-announce/2015-September/165704.html

lists.fedoraproject.org/pipermail/package-announce/2015-September/165723.html

lists.fedoraproject.org/pipermail/package-announce/2015-September/165733.html

lists.fedoraproject.org/pipermail/package-announce/2015-September/165840.html

www.drupal.org/SA-CORE-2015-003

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.007 Low

EPSS

Percentile

80.3%

JSON

Related for PRION:CVE-2015-6661