CVE-2011-4584

Опубликовано: 20 июл. 2012

Источник: nvd

CVSS2: 4

EPSS Низкий

Описание

The MNET authentication functionality in Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, and 2.1.x before 2.1.3 allows remote authenticated users to impersonate other user accounts by using the Login As feature in conjunction with a remote MNET single sign-on capability, as demonstrated by a Mahara site.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:moodle:moodle:1.9.1:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.9.2:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.9.3:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.9.4:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.9.5:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.9.6:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.9.7:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.9.8:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.9.9:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.9.10:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.9.11:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.9.12:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.9.13:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:1.9.14:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.0.0:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.0.1:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.0.2:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.0.3:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.0.4:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.0.5:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.1.0:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.1.1:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.1.2:*:*:*:*:*:*:*

EPSS

Процентиль: 47%

0.00239

Низкий

4 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2011-4584

ubuntu

почти 13 лет назад

CVE-2011-4584

debian

почти 13 лет назад

The MNET authentication functionality in Moodle 1.9.x before 1.9.15, 2 ...

GHSA-x8rw-c396-qjg7

github

около 3 лет назад

EPSS

Процентиль: 47%

0.00239

Низкий

4 Medium

CVSS2

Дефекты

CWE-264