CVE-2015-3180

Опубликовано: 01 июн. 2015

Источник: nvd

CVSS2: 4

EPSS Низкий

Описание

lib/navigationlib.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before 2.7.8, and 2.8.x before 2.8.6 allows remote authenticated users to obtain sensitive course-structure information by leveraging access to a student account with a suspended enrolment.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*

Версия до 2.5.9 (включая)

cpe:2.3:a:moodle:moodle:2.5.0:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.5.1:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.5.2:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.5.3:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.5.4:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.5.5:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.5.6:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.5.7:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.5.8:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.6.0:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.6.1:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.6.2:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.6.3:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.6.4:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.6.5:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.6.6:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.6.7:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.6.8:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.6.9:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.6.10:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.7.0:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.7.1:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.7.2:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.7.3:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.7.4:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.7.5:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.7.6:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.7.7:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.0:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.1:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.2:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.3:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.4:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.5:*:*:*:*:*:*:*

EPSS

Процентиль: 53%

0.00306

Низкий

4 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

CVE-2015-3180

ubuntu

около 10 лет назад

CVE-2015-3180

debian

около 10 лет назад

lib/navigationlib.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2. ...

GHSA-688p-pgj4-77hh

github

около 3 лет назад

Moodle allows attackers to obtain sensitive course-structure information

BDU:2015-10893

fstec

около 10 лет назад

Уязвимость системы управления обучением Мoodle, позволяющая нарушителю получить доступ к защищаемой информации

EPSS

Процентиль: 53%

0.00306

Низкий

4 Medium

CVSS2

Дефекты

CWE-200