Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2020-10738

Опубликовано: 21 мая 2020
Источник: debian
EPSS Низкий

Описание

A flaw was found in Moodle versions 3.8 before 3.8.3, 3.7 before 3.7.6, 3.6 before 3.6.10, 3.5 before 3.5.12 and earlier unsupported versions. It was possible to create a SCORM package in such a way that when added to a course, it could be interacted with via web services in order to achieve remote code execution.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
moodleremovedpackage

EPSS

Процентиль: 84%
0.0234
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2020-10738

CVSS3: 7.5
ubuntu
около 5 лет назад

A flaw was found in Moodle versions 3.8 before 3.8.3, 3.7 before 3.7.6, 3.6 before 3.6.10, 3.5 before 3.5.12 and earlier unsupported versions. It was possible to create a SCORM package in such a way that when added to a course, it could be interacted with via web services in order to achieve remote code execution.

nvd логотип

CVE-2020-10738

CVSS3: 7.5
nvd
около 5 лет назад

A flaw was found in Moodle versions 3.8 before 3.8.3, 3.7 before 3.7.6, 3.6 before 3.6.10, 3.5 before 3.5.12 and earlier unsupported versions. It was possible to create a SCORM package in such a way that when added to a course, it could be interacted with via web services in order to achieve remote code execution.

github логотип

GHSA-vr6v-g96p-cjc3

CVSS3: 8.8
github
около 3 лет назад

Moodle vulnerable to RCE

EPSS

Процентиль: 84%
0.0234
Низкий