Drupal 6.x before 6.31 and 7.x before 7.27 does not properly isolate the cached data of different anonymous users, which allows remote anonymous users to obtain sensitive interim form input information in opportunistic situations via unspecified vectors.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2014-04-23T14:00:00
Updated: 2024-08-06T10:28:46.382Z
Reserved: 2014-04-21T00:00:00
Link: CVE-2014-2983
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2014-04-23T15:55:05.890
Modified: 2021-04-20T12:50:17.150
Link: CVE-2014-2983
Redhat
No data.