Lucene search
Ubuntu.comUB:CVE-2015-3234HistoryJun 22, 2015 - 12:00 a.m.
CVE-2015-3234
2015-06-2200:00:00
ubuntu.com
ubuntu.com
8
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.005 Low
EPSS
Percentile
76.7%
The OpenID module in Drupal 6.x before 6.36 and 7.x before 7.38 allows
remote attackers to log into other users’ accounts by leveraging an OpenID
identity from certain providers, as demonstrated by the Verisign,
LiveJournal, and StackExchange providers.
Related
prion
prion
Design/Logic Flaw
2015-06-22 19:59:00
cve
cve
CVE-2015-3234
2015-06-22 19:59:00
debiancve
debiancve
CVE-2015-3234
2015-06-22 19:59:00
nessus
nessus
Drupal 6.x < 6.36 OpenID Security Bypass
2015-06-19 00:00:00
FreeBSD : drupal -- multiple vulnerabilities (d605edb1-1616-11e5-a000-d050996490d0)
2015-06-19 00:00:00
Drupal 7.x < 7.38 Multiple Vulnerabilities
2016-04-08 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3291-1] drupal7 security update
2015-06-21 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0253)
2015-10-15 00:00:00
Fedora Update for drupal7 FEDORA-2015-10290
2015-07-07 00:00:00
Fedora Update for drupal7 FEDORA-2015-10189
2015-07-03 00:00:00
drupal
drupal
Drupal Core - Critical - Multiple Vulnerabilities - SA-CORE-2015-002
2015-06-17 00:00:00
mageia
mageia
Updated drupal package fixes security vulnerability
2015-07-01 15:40:22
osv
osv
drupal7 - security update
2015-06-18 00:00:00
freebsd
freebsd
drupal -- multiple vulnerabilities
2015-06-17 00:00:00
debian
debian
[SECURITY] [DSA 3291-1] drupal7 security update
2015-06-18 17:52:57
[SECURITY] [DSA 3291-1] drupal7 security update
2015-06-18 17:52:57
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.005 Low
EPSS
Percentile
76.7%
Related for UB:CVE-2015-3234