CVE-2019-10154

Опубликовано: 26 июн. 2019

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

A flaw was found in Moodle before versions 3.7, 3.6.4. A web service fetching messages was not restricted to the current user's conversations.

Релиз	Статус	Примечание
bionic	not-affected	code not present
cosmic	ignored	end of life
devel	not-affected	code not present
disco	not-affected	code not present
esm-apps/bionic	not-affected	code not present
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2019-10154

EPSS

Процентиль: 46%

0.00236

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2019-10154

CVSS3: 7.5

nvd

больше 6 лет назад

A flaw was found in Moodle before versions 3.7, 3.6.4. A web service fetching messages was not restricted to the current user's conversations.

CVE-2019-10154

CVSS3: 7.5

debian

больше 6 лет назад

A flaw was found in Moodle before versions 3.7, 3.6.4. A web service f ...

GHSA-ww45-x87c-wgff

CVSS3: 7.5

github

больше 3 лет назад

Moodle all messaging conversations could be viewed

EPSS

Процентиль: 46%

0.00236

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2019-10154

Описание

Пакет moodle

Ссылки на источники

Связанные уязвимости