CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
EPSS
Percentile
54.8%
mod/data/preset.php in Moodle 2.1.x before 2.1.6 and 2.2.x before 2.2.3
does not properly iterate through an array, which allows remote
authenticated users to overwrite arbitrary database activity presets via
unspecified vectors.
Author | Note |
---|---|
jdstrand | moodle 2.1 and higher |