Lucene search
HistoryAug 28, 2013 - 10:55 p.m.
CVE-2013-2197
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
9.1 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
70.7%
The Login Security module 6.x-1.x before 6.x-1.3 and 7.x-1.x before 7.x-1.3 for Drupal, when using the login delay option, allows remote attackers to cause a denial of service (CPU consumption) via a large number of failed login attempts.
Affected configurations
Node
login_security_projectlogin_securityMatch6.x-1.0
ORlogin_security_projectlogin_securityMatch6.x-1.0beta1
ORlogin_security_projectlogin_securityMatch6.x-1.0rc1
ORlogin_security_projectlogin_securityMatch6.x-1.1
ORlogin_security_projectlogin_securityMatch6.x-1.2
ORlogin_security_projectlogin_securityMatch6.x-1.3
ORlogin_security_projectlogin_securityMatch6.x-1.xdev
ORlogin_security_projectlogin_securityMatch7.x-1.0
ORlogin_security_projectlogin_securityMatch7.x-1.1
ORlogin_security_projectlogin_securityMatch7.x-1.2
ORlogin_security_projectlogin_securityMatch7.x-1.xdev
drupaldrupalMatch-
Related
cvelist
cvelist
CVE-2013-2197
2022-10-03 16:14:59
prion
prion
Code injection
2013-08-28 22:55:00
cve
cve
CVE-2013-2197
2022-10-03 16:14:59
drupal
drupal
SA-CONTRIB-2013-053 - Login Security - Multiple Vulnerabilities
2013-06-19 00:00:00
ibm
ibm
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
9.1 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
70.7%
Related for NVD:CVE-2013-2197