CVE Vulnerabilities

CVE-2014-1475

Published: Jan 24, 2014 | Modified: Feb 21, 2014
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The OpenID module in Drupal 6.x before 6.30 and 7.x before 7.26 allows remote OpenID users to authenticate as other users via unspecified vectors.

Affected Software

Name Vendor Start Version End Version
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.0 7.0
Drupal Drupal 7.1 7.1
Drupal Drupal 7.2 7.2
Drupal Drupal 7.10 7.10
Drupal Drupal 7.11 7.11
Drupal Drupal 7.12 7.12
Drupal Drupal 7.13 7.13
Drupal Drupal 7.14 7.14
Drupal Drupal 7.15 7.15
Drupal Drupal 7.16 7.16
Drupal Drupal 7.17 7.17
Drupal Drupal 7.18 7.18
Drupal Drupal 7.19 7.19
Drupal Drupal 7.20 7.20
Drupal Drupal 7.21 7.21
Drupal Drupal 7.22 7.22
Drupal Drupal 7.23 7.23
Drupal Drupal 7.24 7.24

References