Опубликовано: 25 мая 2018
Источник: ubuntu
Приоритет: medium
EPSS Средний
CVSS2: 6.5
CVSS3: 8.8
Описание
An issue was discovered in Moodle 3.x. A Teacher creating a Calculated question can intentionally cause remote code execution on the server, aka eval injection.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | ignored | end of standard support, was needs-triage |
| cosmic | ignored | end of life |
| devel | DNE | |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/bionic | needs-triage | |
| esm-apps/xenial | needs-triage | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needs-triage] |
| esm-infra/focal | DNE |
Показывать по
10
EPSS
Процентиль: 98%
0.6286
Средний
6.5 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
CVSS3: 8.8
nvd
около 7 лет назад
An issue was discovered in Moodle 3.x. A Teacher creating a Calculated question can intentionally cause remote code execution on the server, aka eval injection.
CVSS3: 8.8
debian
около 7 лет назад
An issue was discovered in Moodle 3.x. A Teacher creating a Calculated ...
CVSS3: 8.8
github
около 3 лет назад
Moodle calculated question type allows remote code execution by Question authors
EPSS
Процентиль: 98%
0.6286
Средний
6.5 Medium
CVSS2
8.8 High
CVSS3