Lucene search

K
ubuntucveUbuntu.comUB:CVE-2011-4288
HistoryJul 16, 2012 - 12:00 a.m.

CVE-2011-4288

2012-07-1600:00:00
ubuntu.com
ubuntu.com
7

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

EPSS

0.001

Percentile

46.6%

Moodle 1.9.x before 1.9.12 and 2.0.x before 2.0.3 does not properly
implement associations between teachers and groups, which allows remote
authenticated users to read quiz reports of arbitrary students by
leveraging the teacher role.

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

EPSS

0.001

Percentile

46.6%

Related for UB:CVE-2011-4288