Описание
The web service responsible for fetching other users' enrolled courses did not validate that the requesting user had permission to view that information in each course in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | DNE | |
| esm-apps/bionic | needs-triage | |
| esm-apps/xenial | needs-triage | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| groovy | DNE | |
| hirsute | DNE | |
| impish | DNE |
Показывать по
10
EPSS
Процентиль: 51%
0.00284
Низкий
4 Medium
CVSS2
4.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 4.3
nvd
больше 4 лет назад
The web service responsible for fetching other users' enrolled courses did not validate that the requesting user had permission to view that information in each course in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17.
CVSS3: 4.3
debian
больше 4 лет назад
The web service responsible for fetching other users' enrolled courses ...
EPSS
Процентиль: 51%
0.00284
Низкий
4 Medium
CVSS2
4.3 Medium
CVSS3