Vulnerability Details : CVE-2009-4558

The Image Assist module 5.x-1.x before 5.x-1.8, 5.x-2.x before 2.0-alpha4, 6.x-1.x before 6.x-1.1, 6.x-2.x before 2.0-alpha4, and 6.x-3.x-dev before 2009-07-15, a module for Drupal, does not properly enforce privilege requirements for unspecified pages, which allows remote attackers to read the (1) title or (2) body of an arbitrary node via unknown vectors.

Published 2010-01-04 21:30:00

Updated 2017-08-17 01:31:39

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2009-4558

Probability of exploitation activity in the next 30 days: 0.43%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 71 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2009-4558

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	[email protected]
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

CWE ids for CVE-2009-4558

CWE-264

Assigned by: [email protected] (Primary)

References for CVE-2009-4558

https://exchange.xforce.ibmcloud.com/vulnerabilities/51787
http://drupal.org/node/520564

Patch;Vendor Advisory

CVEs referencing this url
http://www.securityfocus.com/bid/35710

Patch

CVEs referencing this url

Products affected by CVE-2009-4558

Unleashedmind » Img Assist » Version: 5.x-1.2
cpe:2.3:a:unleashedmind:img_assist:5.x-1.2:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 5.x-1.1
cpe:2.3:a:unleashedmind:img_assist:5.x-1.1:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 6.x-2.x-dev
cpe:2.3:a:unleashedmind:img_assist:6.x-2.x-dev:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 6.x-1.0-beta1
cpe:2.3:a:unleashedmind:img_assist:6.x-1.0-beta1:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 5.x-2.0-alpha1
cpe:2.3:a:unleashedmind:img_assist:5.x-2.0-alpha1:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 5.x-1.7
cpe:2.3:a:unleashedmind:img_assist:5.x-1.7:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 5.x-1.0
cpe:2.3:a:unleashedmind:img_assist:5.x-1.0:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 5.x-1.x-dev
cpe:2.3:a:unleashedmind:img_assist:5.x-1.x-dev:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 6.x-1.x-dev
cpe:2.3:a:unleashedmind:img_assist:6.x-1.x-dev:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 6.x-3.x-dev
cpe:2.3:a:unleashedmind:img_assist:6.x-3.x-dev:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 5.x-2.x-dev
cpe:2.3:a:unleashedmind:img_assist:5.x-2.x-dev:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 5.x-1.6
cpe:2.3:a:unleashedmind:img_assist:5.x-1.6:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 5.x-1.5
cpe:2.3:a:unleashedmind:img_assist:5.x-1.5:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 5.x-2.0-alpha3
cpe:2.3:a:unleashedmind:img_assist:5.x-2.0-alpha3:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 6.x-2.0-alpha3
cpe:2.3:a:unleashedmind:img_assist:6.x-2.0-alpha3:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 5.x-1.4
cpe:2.3:a:unleashedmind:img_assist:5.x-1.4:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 5.x-1.3
cpe:2.3:a:unleashedmind:img_assist:5.x-1.3:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 6.x-2.0-alpha2
cpe:2.3:a:unleashedmind:img_assist:6.x-2.0-alpha2:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal
Unleashedmind » Img Assist » Version: 6.x-1.0
cpe:2.3:a:unleashedmind:img_assist:6.x-1.0:*:*:*:*:*:*:*
Matching versions
When used together with: Drupal » Drupal