exploitDog

CVE-2019-10154

Опубликовано: 26 июн. 2019

Источник: ubuntu

Приоритет: low

CVSS2: 5

CVSS3: 7.5

Описание

A flaw was found in Moodle before versions 3.7, 3.6.4. A web service fetching messages was not restricted to the current user's conversations.

Релиз	Статус	Примечание
bionic	not-affected	code not present
cosmic	ignored	end of life
devel	not-affected	code not present
disco	not-affected	code not present
esm-apps/bionic	not-affected	code not present
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2019-10154

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2019-10154

CVSS3: 7.5

nvd

почти 6 лет назад

A flaw was found in Moodle before versions 3.7, 3.6.4. A web service fetching messages was not restricted to the current user's conversations.

CVE-2019-10154

CVSS3: 7.5

debian

почти 6 лет назад

A flaw was found in Moodle before versions 3.7, 3.6.4. A web service f ...

GHSA-ww45-x87c-wgff

CVSS3: 7.5

github

около 3 лет назад

Moodle all messaging conversations could be viewed

5 Medium

CVSS2

7.5 High

CVSS3