Lucene search
GoogleOSV:GHSA-92VH-MR2W-J2CRHistorySep 30, 2022 - 12:00 a.m.
Moodle Improper Authentication
2022-09-3000:00:30
Google
osv.dev
10
moodle
shibboleth
session hijack
risk
authentication
plugin
software
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
7.3
Confidence
Low
EPSS
0.001
Percentile
32.5%
A session hijack risk was identified in the Shibboleth authentication plugin.
Related
osv
osv
BIT-moodle-2021-40691
2024-03-06 11:07:44
CVE-2021-40691
2022-09-29 03:15:14
veracode
veracode
Improper Authentication
2022-09-30 06:17:08
nvd
nvd
CVE-2021-40691
2022-09-29 03:15:14
ubuntucve
ubuntucve
CVE-2021-40691
2022-09-29 00:00:00
prion
prion
Session fixation
2022-09-29 03:15:00
github
github
Moodle Improper Authentication
2022-09-30 00:00:30
cve
cve
CVE-2021-40691
2022-09-29 03:15:14
cvelist
cvelist
CVE-2021-40691
2022-01-21 18:17:49
nessus
nessus
Moodle 3.10.x < 3.10.7 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.11.x < 3.11.3 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.9.x < 3.9.10 Multiple Vulnerabilities
2023-02-20 00:00:00
openvas
openvas
Moodle Session Hijack Vulnerability (MSA-21-0032)
2023-08-16 00:00:00
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
7.3
Confidence
Low
EPSS
0.001
Percentile
32.5%
Related for OSV:GHSA-92VH-MR2W-J2CR