Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2023/06/30 12:0 a.m.48 views

Fedora 37 : moodle (2023-ce24b63b36)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-ce24b63b36 advisory. Fix for several CVEs Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not test...

7.5CVSS6.2AI score0.00825EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/06/30 12:0 a.m.26 views

Fedora 38 : moodle (2023-3ca351353f)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-3ca351353f advisory. Fix for several CVEs Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not test...

7.5CVSS6.2AI score0.00825EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2023/06/22 9:15 p.m.5 views

CVE-2023-35133

An issue in the logic used to check 0.0.0.0 against the cURL blocked hosts lists resulted in an SSRF risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versions...

7.5CVSS5.8AI score0.00825EPSS
Exploits0References7
CVE
CVE
added 2023/06/22 12:0 a.m.101 views

CVE-2023-35133

The CVE-2023-35133 issue is a Moodle SSRF risk caused by an incorrect check of 0.0.0.0 against the curl blocked hosts lists. Affected Moodle versions include 4.2 and 4.1.x up to 4.1.3, 4.0.x up to 4.0.8, 3.11.x up to 3.11.14, 3.9.x up to 3.9.21, and earlier unsupported releases. The connected OSV...

7.5CVSS7.2AI score0.00825EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/22 12:0 a.m.41 views

CVE-2023-35133 Moodle: ssrf risk due to insufficient check on the curl blocked hosts

An issue in the logic used to check 0.0.0.0 against the cURL blocked hosts lists resulted in an SSRF risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versions...

7.5CVSS6.5AI score0.00825EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/06/22 12:0 a.m.34 views

CVE-2023-35133 Moodle: ssrf risk due to insufficient check on the curl blocked hosts

An issue in the logic used to check 0.0.0.0 against the cURL blocked hosts lists resulted in an SSRF risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versions...

7.5CVSS7.5AI score0.00825EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/06/22 12:0 a.m.24 views

Moodle Multiple Vulnerabilities (MSA-23-0017, MSA-23-0018)

Moodle is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:moodle:moodle"; ifdescription...

7.5CVSS7.6AI score0.00825EPSS
Exploits0References2
Rows per page
Query Builder