CVE-2024-13274

Improper Control of Interaction Frequency vulnerability in Drupal Open Social allows Functionality Misuse.This issue affects Open Social: from 0.0.0 before 12.3.8, from 12.4.0 before 12.4.5.

CVSS v3 5.3 MEDIUM

5.3^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://www.drupal.org/sa-contrib-2024-038

Configurations

No configuration.

History

14 Jan 2025, 17:15

Type	Values Removed	Values Added
Summary		(es) La vulnerabilidad de control inadecuado de la frecuencia de interacción en Drupal Open Social permite un uso indebido de la funcionalidad. Este problema afecta a Open Social: desde la versión 0.0.0 hasta la 12.3.8, desde la versión 12.4.0 hasta la 12.4.5.
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.3

09 Jan 2025, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-01-09 20:15

Updated : 2025-01-14 17:15

NVD link : CVE-2024-13274

Mitre link : CVE-2024-13274

CVE.ORG link : CVE-2024-13274

JSON object : View

Products Affected

No product.

CWE

CWE-799

Improper Control of Interaction Frequency

5.3 /10