CVE-2023-5542

Опубликовано: 09 нояб. 2023

Источник: nvd

CVSS3: 3.3

CVSS3: 4.3

EPSS Низкий

Описание

Students in "Only see own membership" groups could see other students in the group, which should be hidden.

Ссылки

http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79213
Patch
https://bugzilla.redhat.com/show_bug.cgi?id=2243441
Issue Tracking
Patch
Third Party Advisory
https://moodle.org/mod/forum/discuss.php?d=451583
Patch
Vendor Advisory
http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-79213
Patch
https://bugzilla.redhat.com/show_bug.cgi?id=2243441
Issue Tracking
Patch
Third Party Advisory
https://moodle.org/mod/forum/discuss.php?d=451583
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:moodle:moodle:4.2.2:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:7.0:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*

EPSS

Процентиль: 50%

0.00268

Низкий

3.3 Low

CVSS3

4.3 Medium

CVSS3

Дефекты

CWE-284

CWE-668

Связанные уязвимости

CVE-2023-5542

CVSS3: 3.3

ubuntu

больше 1 года назад

Students in "Only see own membership" groups could see other students in the group, which should be hidden.

CVE-2023-5542

CVSS3: 3.3

debian

больше 1 года назад

Students in "Only see own membership" groups could see other students ...

GHSA-8mm2-m2gp-c6x2

CVSS3: 4.3

github

больше 1 года назад

Moodle Improper Access Control vulnerability

EPSS

Процентиль: 50%

0.00268

Низкий

3.3 Low

CVSS3

4.3 Medium

CVSS3

Дефекты

CWE-284

CWE-668