CVE-2022-2986

Опубликовано: 06 окт. 2022

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 8.8

Описание

Enabling and disabling installed H5P libraries did not include the necessary token to prevent a CSRF risk.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
esm-apps/bionic	needs-triage
esm-apps/xenial	needs-triage
esm-infra/focal	DNE
focal	DNE
jammy	DNE
trusty	ignored	end of standard support
upstream	needs-triage
xenial	ignored	end of standard support

Показывать по

EPSS

Процентиль: 52%

0.00286

Низкий

8.8 High

CVSS3

CVE-2022-2986

CVSS3: 8.8

nvd

около 3 лет назад

Enabling and disabling installed H5P libraries did not include the necessary token to prevent a CSRF risk.

CVE-2022-2986

CVSS3: 8.8

debian

около 3 лет назад

Enabling and disabling installed H5P libraries did not include the nec ...

GHSA-xjr3-fwp9-9g96

CVSS3: 8.8

github

около 3 лет назад

Moodle Cross-Site Request Forgery (CSRF)

EPSS

Процентиль: 52%

0.00286

Низкий

8.8 High

CVSS3