Lucene search
RedhatCVELIST:CVE-2019-10187HistoryJul 31, 2019 - 9:39 p.m.
CVE-2019-10187
2019-07-3121:39:40
CWE-284
redhat
www.cve.org
4
CVSS3
4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
AI Score
4.8
Confidence
High
EPSS
0.001
Percentile
45.4%
A flaw was found in moodle before versions 3.7.1, 3.6.5, 3.5.7. Users with permission to delete entries from a glossary were able to delete entries from other glossaries they did not have direct access to.
CNA Affected
[
{
"product": "moodle",
"vendor": "The Moodle Project",
"versions": [
{
"status": "affected",
"version": "3.7.1"
},
{
"status": "affected",
"version": "3.6.5"
},
{
"status": "affected",
"version": "3.5.7"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2019-10187
2019-07-31 00:00:00
github
github
Moodle Ability to delete glossary entries that belong to another glossary
2022-05-24 16:52:01
nvd
nvd
CVE-2019-10187
2019-07-31 22:15:12
redhatcve
redhatcve
CVE-2019-10187
2022-05-20 23:45:18
osv
osv
CVE-2019-10187
2019-07-31 22:15:12
Moodle Ability to delete glossary entries that belong to another glossary
2022-05-24 16:52:01
prion
prion
Design/Logic Flaw
2019-07-31 22:15:00
veracode
veracode
Authorization Bypass
2019-07-17 05:34:37
cve
cve
CVE-2019-10187
2019-07-31 22:15:12
openvas
openvas
Moodle < 3.5.7, 3.6.x < 3.6.5, 3.7.x < 3.7.1 Multiple Vulnerabilities
2019-08-06 00:00:00
CVSS3
4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
AI Score
4.8
Confidence
High
EPSS
0.001
Percentile
45.4%
Related for CVELIST:CVE-2019-10187