exploitDog

CVE-2012-4554

Опубликовано: 11 нояб. 2012

Источник: ubuntu

Приоритет: medium

EPSS Средний

CVSS2: 5

Описание

The OpenID module in Drupal 7.x before 7.16 allows remote OpenID servers to read arbitrary files via a crafted DOCTYPE declaration in an XRDS file.

Релиз	Статус	Примечание
devel	not-affected	7.14-1.1
esm-apps/xenial	not-affected	7.14-1.1
esm-infra-legacy/trusty	not-affected	7.14-1.1
hardy	DNE
lucid	DNE
oneiric	DNE
precise	ignored	end of life
precise/esm	DNE	precise was needed
quantal	ignored	end of life
raring	not-affected	7.14-1.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 98%

0.54623

Средний

5 Medium

CVSS2

Связанные уязвимости

CVE-2012-4554

nvd

около 13 лет назад

The OpenID module in Drupal 7.x before 7.16 allows remote OpenID servers to read arbitrary files via a crafted DOCTYPE declaration in an XRDS file.

CVE-2012-4554

debian

около 13 лет назад

The OpenID module in Drupal 7.x before 7.16 allows remote OpenID serve ...

GHSA-m4pj-47x5-hq8v

github

больше 3 лет назад

The OpenID module in Drupal 7.x before 7.16 allows remote OpenID servers to read arbitrary files via a crafted DOCTYPE declaration in an XRDS file.

EPSS

Процентиль: 98%

0.54623

Средний

5 Medium

CVSS2