Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2011-4592

Опубликовано: 20 июл. 2012
Источник: nvd
CVSS2: 5
EPSS Низкий

Описание

The command-line cron implementation in Moodle 2.0.x before 2.0.6 and 2.1.x before 2.1.3 does not properly interact with IP blocking, which might allow remote attackers to bypass intended IP address restrictions by leveraging a configuration in which IP blocking was disabled to restore cron functionality.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:moodle:moodle:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:2.0.5:*:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:a:moodle:moodle:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:moodle:moodle:2.1.2:*:*:*:*:*:*:*

EPSS

Процентиль: 60%
0.0041
Низкий

5 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

ubuntu логотип

CVE-2011-4592

ubuntu
почти 13 лет назад

The command-line cron implementation in Moodle 2.0.x before 2.0.6 and 2.1.x before 2.1.3 does not properly interact with IP blocking, which might allow remote attackers to bypass intended IP address restrictions by leveraging a configuration in which IP blocking was disabled to restore cron functionality.

debian логотип

CVE-2011-4592

debian
почти 13 лет назад

The command-line cron implementation in Moodle 2.0.x before 2.0.6 and ...

github логотип

GHSA-4fm4-pcw7-99hg

github
около 3 лет назад

The command-line cron implementation in Moodle 2.0.x before 2.0.6 and 2.1.x before 2.1.3 does not properly interact with IP blocking, which might allow remote attackers to bypass intended IP address restrictions by leveraging a configuration in which IP blocking was disabled to restore cron functionality.

EPSS

Процентиль: 60%
0.0041
Низкий

5 Medium

CVSS2

Дефекты

CWE-264