Improper input validation in Redhat Enterprise_mrg

CVE-2012-2682

Cumin (aka MRG Management Console), as used in Red Hat Enterprise MRG 2.5, allows attackers with certain database privileges to cause a denial of service (inaccessible page) via a non-ASCII character in the name of a link.

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.004 (61.5th percentile) — read the EPSS interpretation.

Affected products

Redhat Enterprise_mrg — versions 2.5
N/a — versions n/a

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

RHSA-2014:0858 (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)
secalert@redhat.com (x_refsource_CONFIRM)
RHSA-2014:0859 (x_refsource_REDHAT, vendor-advisory, Vendor Advisory)