Base Score

MEDIUM6.1

CVE-2010-2471

Drupal versions 5.x and 6.x has open redirection

VectorNETWORK

Published Bysecalert@redhat.com

Published DateNov 06, 2019, 18:15

Weakness Type (CWE):CWE-601

CVSS Metrics

Base Score

6.1

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Base Severity

MEDIUM

Version

3.1

Attack Vector (AV)

NETWORK

Attack Complexity (AC)

LOW

Privileges Required (PR)

NONE

User Interaction (UI)

REQUIRED

Scope (S)

CHANGED

Confidentiality (C)

LOW

Integrity (I)

LOW

Availability (A)

NONE

References

http://www.openwall.com/lists/oss-security/2014/02/12/8
https://access.redhat.com/security/cve/cve-2010-2471
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=592716
https://security-tracker.debian.org/tracker/CVE-2010-2471
https://www.drupal.org/node/731710
https://www.openwall.com/lists/oss-security/2010/06/28/8

Base Score

MEDIUM6.1

Weakness Type (CWE):CWE-601

CVSS Metrics

Base Score

6.1

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Base Severity

MEDIUM

Version

3.1

Attack Vector (AV)

NETWORK

Attack Complexity (AC)

LOW

Privileges Required (PR)

NONE

User Interaction (UI)

REQUIRED

Scope (S)

CHANGED

Confidentiality (C)

LOW

Integrity (I)

LOW

Availability (A)

NONE