CVE-2016-8644

Опубликовано: 20 янв. 2017

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

In Moodle 2.x and 3.x, the capability to view course notes is checked in the wrong context.

Ссылки

http://www.securityfocus.com/bid/94458
Third Party Advisory
VDB Entry
https://moodle.org/mod/forum/discuss.php?d=343277
Patch
Vendor Advisory
http://www.securityfocus.com/bid/94458
Third Party Advisory
VDB Entry
https://moodle.org/mod/forum/discuss.php?d=343277
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*

Версия до 2.7.16 (включая)

cpe:2.3:a:moodle:moodle:2.8.0:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.1:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.2:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.3:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.4:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.5:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.6:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.7:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.8:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.9:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.10:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.11:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.8.12:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.9.0:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.9.1:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.9.2:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.9.3:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.9.4:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.9.5:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.9.6:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.9.7:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:2.9.8:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:3.0.0:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:3.0.1:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:3.0.2:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:3.0.3:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:3.0.4:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:3.0.5:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:3.0.6:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:3.1.0:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:3.1.1:*:*:*:*:*:*:*

cpe:2.3:a:moodle:moodle:3.1.2:*:*:*:*:*:*:*

EPSS

Процентиль: 51%

0.00284

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2016-8644

CVSS3: 5.3

ubuntu

больше 8 лет назад

In Moodle 2.x and 3.x, the capability to view course notes is checked in the wrong context.

CVE-2016-8644

CVSS3: 5.3

debian

больше 8 лет назад

In Moodle 2.x and 3.x, the capability to view course notes is checked ...

GHSA-x92j-j6qp-c93p

CVSS3: 5.3

github

около 3 лет назад

In Moodle 2.x and 3.x, the capability to view course notes is checked in the wrong context.

BDU:2017-00177

fstec

больше 8 лет назад

Уязвимость системы управления обучением Мoodle, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 51%

0.00284

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-264