Vulnerability Details CVE-2015-8232
The UC Profile module 6.x-1.x before 6.x-1.3 for Drupal does not properly check access to profiles in certain circumstances, which might allow remote attackers to obtain sensitive information from the anonymous user profile via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 48.4%
CVSS Severity
CVSS v2 Score 4.3
References
Products affected by CVE-2015-8232
-
cpe:2.3:a:uc_profile_project:uc_profile:6.x-1.1
-
cpe:2.3:a:uc_profile_project:uc_profile:6.x-1.2