The Amazon AWS module before 7.x-1.3 for Drupal uses the base URL and AWS access key to generate the access token, which makes it easier for remote attackers to guess the token value and create backups via a crafted URL.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2015-04-21T16:00:00
Updated: 2016-12-02T20:57:01
Reserved: 2015-04-21T00:00:00
Link: CVE-2015-3373
JSON object: View
NVD Information
Status : Modified
Published: 2015-04-21T16:59:31.733
Modified: 2016-12-06T03:00:31.890
Link: CVE-2015-3373
JSON object: View
Redhat Information
No data.
CWE