CVE-2015-3379 Information

Description

The Views module before 6.x-2.18 6.x-3.x before 6.x-3.2 and 7.x-3.x before 7.x-3.10 for Drupal does not properly restrict access to the default views configurations which allows remote authenticated users to obtain sensitive information via unspecified vectors.

Reference

http://www.openwall.com/lists/oss-security/2015/02/13/12 https://www.drupal.org/node/2424097 https://www.drupal.org/node/2424101 https://www.drupal.org/node/2424103 https://www.drupal.org/node/2424403