Lucene search

[email protected]NVD:CVE-2017-7532

HistoryJul 17, 2017 - 5:29 p.m.

CVE-2017-7532

2017-07-1717:29:00

CWE-269

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

EPSS

0.001

Percentile

21.7%

JSON

In Moodle 3.x, course creators are able to change system default settings for courses.

Affected configurations

Nvd

Node

moodlemoodleMatch3.1.0

moodlemoodleMatch3.1.0beta

moodlemoodleMatch3.1.0rc1

moodlemoodleMatch3.1.0rc2

moodlemoodleMatch3.1.1

moodlemoodleMatch3.1.2

moodlemoodleMatch3.1.3

moodlemoodleMatch3.1.4

moodlemoodleMatch3.1.5

moodlemoodleMatch3.1.6

moodlemoodleMatch3.2.0

moodlemoodleMatch3.2.0beta

moodlemoodleMatch3.2.0rc1

moodlemoodleMatch3.2.0rc2

moodlemoodleMatch3.2.0rc3

moodlemoodleMatch3.2.0rc4

moodlemoodleMatch3.2.0rc5

moodlemoodleMatch3.2.1

moodlemoodleMatch3.2.2

moodlemoodleMatch3.2.3

moodlemoodleMatch3.3.0

moodlemoodleMatch3.3.1

References

www.securityfocus.com/bid/99617

moodle.org/mod/forum/discuss.php?d=355556

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

EPSS

0.001

Percentile

21.7%

JSON

Related for NVD:CVE-2017-7532

prion1 veracode1 osv2 cvelist1 ubuntucve1 cve1 github1 openvas5 fedora3