Lucene search

K
redosRedosROS-2-1317
HistorySep 08, 2021 - 12:00 a.m.

ROS-2-1317

2021-09-0800:00:00
redos.red-soft.ru
4
moodle
vulnerabilities
remote code execution
sql injection
dos attack
unauthorized access
security updates
installation
cve-2021-32472
cve-2021-32473
cve-2021-32474
cve-2021-32475
cve-2021-32476
cve-2021-32477
cve-2021-32478
fstec
remedial actions

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.7

Confidence

High

EPSS

0.963

Percentile

99.6%

2.1317 Multiple vulnerabilities in Moodle (CVE-2021-32472 - CVE-2021-32478)

1. Vulnerability Description:

CVE-2021-32478 A vulnerability exists due to insufficient cleansing of user-provided data at the LTI authorization endpoint. A remote attacker could trick a victim into clicking a specially crafted link and executing arbitrary HTML and script code in the user’s browser in the context of a vulnerable website. CVE-2021-32472 A vulnerability exists due to excessive data output by an application. A remotely authenticated instructor exporting a forum to CSV format could receive CSVs of forums from all courses. CVE-2021-32473 A vulnerability exists due to excessive data output by the application. A remotely authenticated student can view their quiz grade before it is released using the quiz web service. CVE-2021-32474 A vulnerability allows a remote user to execute arbitrary SQL queries on a database. The vulnerability exists due to insufficient cleansing of user-supplied data in an XML-RPC call. A remote administrator can send a specially crafted query to a vulnerable application and execute arbitrary SQL commands on the application’s database. CVE-2021-32475 A vulnerability exists due to insufficient scrubbing of user-provided data within the identification numbers displayed in a quiz grade report. A remote attacker could inject and execute arbitrary HTML and script code in the user’s browser in the context of a vulnerable website. CVE-2021-32476 A vulnerability exists due to insufficient validation of user-entered data in the draft file area. A remote attacker could pass specially crafted input data to an application and perform a denial of service (DoS) attack. CVE-2021-32477 A vulnerability exists because the last time a user logged into the mobile app is displayed on their profile page. A remote attacker could gain unauthorized access to sensitive information in the system.Identifier of the Information Security Threat Data Bank of the FSTEC of Russia: BDU:2021-02734, BDU:2021-02735, BDU:2021-02735, BDU:2021-02736, BDU:2021-02737, BDU:2021-02738, BDU:2021-02740, BDU:2021-02739

2. Possible remedial actions to address the vulnerability

Refuse to use Moodle or - install security updates for the package: moodle**Installing updates is possible in the following ways:**a) if the computer with the installed OS version has access to the vendor’s official repository, you should run the update as an administrator with the command:# yum updateAfter the list of updated packages is displayed, agree to apply the updates by pressing the Y key on the keyboard. Wait until the update installation is complete and make sure that there are no errors during its installation.b)If the computer with the installed OS version does not have access to the vendor’s official repository, you should perform the following actions: - download the updated package (with dependencies if necessary): http://repo.red-soft.ru/redos/7.2c/x86_64/updates/moodle-3.11-0.1.el7.noarch.rpm Check the integrity and authenticity of the package according to instructionsInstall the downloaded package(s) with the command:# yum localinstall *.rpmWhen the list of updated packages is displayed, agree to apply the updates by pressingY on the keyboard. Wait for the updates to finish installing and make sure there are no errors during the installation.

Date of last modification: 08.09.2021

OSVersionArchitecturePackageVersionFilename
redosunknown< UNKNOWN

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.7

Confidence

High

EPSS

0.963

Percentile

99.6%