Lucene search

RedhatCVE-2013-2081

HistoryMay 25, 2013 - 3:18 a.m.

CVE-2013-2081

2013-05-2503:18:15

CWE-264

redhat

web.nvd.nist.gov

moodle

cve-2013-2081

information security

remote hubs

data leakage

vulnerability

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

AI Score

5.9

Confidence

Low

EPSS

0.003

Percentile

65.9%

JSON

Moodle through 2.1.10, 2.2.x before 2.2.10, 2.3.x before 2.3.7, and 2.4.x before 2.4.4 does not consider “don’t send” attributes during hub registration, which allows remote hubs to obtain sensitive site information by reading form data.

Affected configurations

Nvd

Node

moodlemoodleMatch2.1.0

moodlemoodleMatch2.1.1

moodlemoodleMatch2.1.2

moodlemoodleMatch2.1.3

moodlemoodleMatch2.1.4

moodlemoodleMatch2.1.5

moodlemoodleMatch2.1.6

moodlemoodleMatch2.1.7

moodlemoodleMatch2.1.8

moodlemoodleMatch2.1.9

moodlemoodleMatch2.1.10

Node

moodlemoodleMatch2.2.0

moodlemoodleMatch2.2.1

moodlemoodleMatch2.2.2

moodlemoodleMatch2.2.3

moodlemoodleMatch2.2.4

moodlemoodleMatch2.2.5

moodlemoodleMatch2.2.6

moodlemoodleMatch2.2.7

moodlemoodleMatch2.2.8

moodlemoodleMatch2.2.9

Node

moodlemoodleMatch2.3.0

moodlemoodleMatch2.3.1

moodlemoodleMatch2.3.2

moodlemoodleMatch2.3.3

moodlemoodleMatch2.3.4

moodlemoodleMatch2.3.5

moodlemoodleMatch2.3.6

Node

moodlemoodleMatch2.4.0

moodlemoodleMatch2.4.1

moodlemoodleMatch2.4.2

moodlemoodleMatch2.4.3

VendorProductVersionCPE
moodlemoodle2.1.0cpe:2.3:a:moodle:moodle:2.1.0:*:*:*:*:*:*:*
moodlemoodle2.1.1cpe:2.3:a:moodle:moodle:2.1.1:*:*:*:*:*:*:*
moodlemoodle2.1.2cpe:2.3:a:moodle:moodle:2.1.2:*:*:*:*:*:*:*
moodlemoodle2.1.3cpe:2.3:a:moodle:moodle:2.1.3:*:*:*:*:*:*:*
moodlemoodle2.1.4cpe:2.3:a:moodle:moodle:2.1.4:*:*:*:*:*:*:*
moodlemoodle2.1.5cpe:2.3:a:moodle:moodle:2.1.5:*:*:*:*:*:*:*
moodlemoodle2.1.6cpe:2.3:a:moodle:moodle:2.1.6:*:*:*:*:*:*:*
moodlemoodle2.1.7cpe:2.3:a:moodle:moodle:2.1.7:*:*:*:*:*:*:*
moodlemoodle2.1.8cpe:2.3:a:moodle:moodle:2.1.8:*:*:*:*:*:*:*
moodlemoodle2.1.9cpe:2.3:a:moodle:moodle:2.1.9:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
moodle	moodle	2.1.0	cpe:2.3:a:moodle:moodle:2.1.0:::::::*
moodle	moodle	2.1.1	cpe:2.3:a:moodle:moodle:2.1.1:::::::*
moodle	moodle	2.1.2	cpe:2.3:a:moodle:moodle:2.1.2:::::::*
moodle	moodle	2.1.3	cpe:2.3:a:moodle:moodle:2.1.3:::::::*
moodle	moodle	2.1.4	cpe:2.3:a:moodle:moodle:2.1.4:::::::*
moodle	moodle	2.1.5	cpe:2.3:a:moodle:moodle:2.1.5:::::::*
moodle	moodle	2.1.6	cpe:2.3:a:moodle:moodle:2.1.6:::::::*
moodle	moodle	2.1.7	cpe:2.3:a:moodle:moodle:2.1.7:::::::*
moodle	moodle	2.1.8	cpe:2.3:a:moodle:moodle:2.1.8:::::::*
moodle	moodle	2.1.9	cpe:2.3:a:moodle:moodle:2.1.9:::::::*