Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2019-14880

Опубликовано: 31 мар. 2020
Источник: debian
EPSS Низкий

Описание

A vulnerability was found in Moodle versions 3.7 before 3.7.3, 3.6 before 3.6.7, 3.5 before 3.5.9 and earlier. OAuth 2 providers who do not verify users' email address changes require additional verification during sign-up to reduce the risk of account compromise.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
moodleremovedpackage

EPSS

Процентиль: 47%
0.00239
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2019-14880

CVSS3: 9.1
ubuntu
около 5 лет назад

A vulnerability was found in Moodle versions 3.7 before 3.7.3, 3.6 before 3.6.7, 3.5 before 3.5.9 and earlier. OAuth 2 providers who do not verify users' email address changes require additional verification during sign-up to reduce the risk of account compromise.

nvd логотип

CVE-2019-14880

CVSS3: 9.1
nvd
около 5 лет назад

A vulnerability was found in Moodle versions 3.7 before 3.7.3, 3.6 before 3.6.7, 3.5 before 3.5.9 and earlier. OAuth 2 providers who do not verify users' email address changes require additional verification during sign-up to reduce the risk of account compromise.

github логотип

GHSA-rv62-6f56-j83w

CVSS3: 9.1
github
около 3 лет назад

Moodle Oauth 2 Insufficiently Protects Against Compromise

EPSS

Процентиль: 47%
0.00239
Низкий