Vulnerability Details CVE-2014-6632
Joomla! 2.5.x before 2.5.25, 3.x before 3.2.4, and 3.3.x before 3.3.4 allows remote attackers to authenticate and bypass intended access restrictions via vectors involving LDAP authentication.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 31.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://developer.joomla.org/security/594-20140902-core-unauthorised-logins.html
- http://secunia.com/advisories/61606
- http://secunia.com/advisories/61638
- http://developer.joomla.org/security/594-20140902-core-unauthorised-logins.html
- http://secunia.com/advisories/61606
- http://secunia.com/advisories/61638
Products affected by CVE-2014-6632
-
cpe:2.3:a:joomla:joomla!:2.5.0
-
cpe:2.3:a:joomla:joomla!:2.5.1
-
cpe:2.3:a:joomla:joomla!:2.5.10
-
cpe:2.3:a:joomla:joomla!:2.5.11
-
cpe:2.3:a:joomla:joomla!:2.5.12
-
cpe:2.3:a:joomla:joomla!:2.5.13
-
cpe:2.3:a:joomla:joomla!:2.5.14
-
cpe:2.3:a:joomla:joomla!:2.5.15
-
cpe:2.3:a:joomla:joomla!:2.5.16
-
cpe:2.3:a:joomla:joomla!:2.5.17
-
cpe:2.3:a:joomla:joomla!:2.5.19
-
cpe:2.3:a:joomla:joomla!:2.5.2
-
cpe:2.3:a:joomla:joomla!:2.5.20
-
cpe:2.3:a:joomla:joomla!:2.5.21
-
cpe:2.3:a:joomla:joomla!:2.5.22
-
cpe:2.3:a:joomla:joomla!:2.5.23
-
cpe:2.3:a:joomla:joomla!:2.5.24
-
cpe:2.3:a:joomla:joomla!:2.5.3
-
cpe:2.3:a:joomla:joomla!:2.5.4
-
cpe:2.3:a:joomla:joomla!:2.5.5
-
cpe:2.3:a:joomla:joomla!:2.5.6
-
cpe:2.3:a:joomla:joomla!:2.5.7
-
cpe:2.3:a:joomla:joomla!:2.5.8
-
cpe:2.3:a:joomla:joomla!:2.5.9
-
cpe:2.3:a:joomla:joomla!:3.2.0
-
cpe:2.3:a:joomla:joomla!:3.2.1
-
cpe:2.3:a:joomla:joomla!:3.2.2
-
cpe:2.3:a:joomla:joomla!:3.2.3
-
cpe:2.3:a:joomla:joomla!:3.3.0
-
cpe:2.3:a:joomla:joomla!:3.3.1
-
cpe:2.3:a:joomla:joomla!:3.3.2
-
cpe:2.3:a:joomla:joomla!:3.3.3