CVE-2015-5509

Sažetak

The Administration Views module 7.x-1.x before 7.x-1.4 for Drupal, when used with other unspecified modules, does not properly grant access to administration pages, which allows remote administrators to bypass intended restrictions via unspecified vectors.

Reference

http://www.openwall.com/lists/oss-security/2015/07/04/4
http://www.securityfocus.com/bid/75278
https://www.drupal.org/node/2430043
https://www.drupal.org/node/2507645

CVSS

Base:	6.0
Impact:	6.4
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:S/C:P/I:P/A:P

Zadnje važnije ažuriranje

28-11-2016 - 19:33

Objavljeno

18-08-2015 - 18:00