6 matches found
CVE-2021-36539
Instructure Canvas LMS didn't properly deny access to locked/unpublished files when the unprivileged user access the DocViewer based file preview URL canvadocsessionurl...
BIT-CANVASLMS-2021-36539
Instructure Canvas LMS didn't properly deny access to locked/unpublished files when the unprivileged user access the DocViewer based file preview URL canvadocsessionurl...
CVE-2021-36539
Instructure Canvas LMS didn't properly deny access to locked/unpublished files when the unprivileged user access the DocViewer based file preview URL canvadocsessionurl...
CVE-2021-36539
Instructure Canvas LMS didn't properly deny access to locked/unpublished files when the unprivileged user access the DocViewer based file preview URL canvadocsessionurl...
PT-2023-12286 · Instructure · Instructure Canvas Lms
Name of the Vulnerable Software and Affected Versions: Instructure Canvas LMS affected versions not specified Description: The issue concerns improper access control in Instructure Canvas LMS, where unprivileged users can access locked or unpublished files through the DocViewer based file preview...
The vulnerabilities of Microsoft Word, the document viewing program Word Viewer, and the Microsoft Office suite allow a perpetrator to execute arbitrary code.
The vulnerabilities of Microsoft Word, the DocViewer program for reading Doc files, and the Microsoft Office suite are due to buffer overflow vulnerabilities. Exploiting these vulnerabilities allows a malicious actor to execute arbitrary code using a specially created Office document...