GHSA-948f-j464-rfj2

Опубликовано: 24 мар. 2023

Источник: github

Github: Прошло ревью

CVSS3: 4.3

Описание

Moodle may allow students to bypass sequential navigation during a quiz attempt

In Moodle, insufficient limitations in some quiz web services made it possible for students to bypass sequential navigation during a quiz attempt.

Ссылки

Пакеты

Наименование

moodle/moodle

composer

Затронутые версииВерсия исправления

>= 4.0.0, < 4.0.3

4.0.3

Наименование

moodle/moodle

composer

Затронутые версииВерсия исправления

>= 3.11.0, < 3.11.9

3.11.9

Наименование

moodle/moodle

composer

Затронутые версииВерсия исправления

< 3.9.16

3.9.16

EPSS

Процентиль: 27%

0.00089

Низкий

4.3 Medium

CVSS3

CVE ID

CVE-2022-40208

Дефекты

CWE-285

Связанные уязвимости

CVE-2022-40208

CVSS3: 4.3

ubuntu

около 2 лет назад

In Moodle, insufficient limitations in some quiz web services made it possible for students to bypass sequential navigation during a quiz attempt.

CVE-2022-40208

CVSS3: 4.3

nvd

около 2 лет назад

In Moodle, insufficient limitations in some quiz web services made it possible for students to bypass sequential navigation during a quiz attempt.

CVE-2022-40208

CVSS3: 4.3

debian

около 2 лет назад

In Moodle, insufficient limitations in some quiz web services made it ...

EPSS

Процентиль: 27%

0.00089

Низкий

4.3 Medium

CVSS3

CVE ID

CVE-2022-40208

Дефекты

CWE-285