Lucene search
Ubuntu.comUB:CVE-2015-2267HistoryJun 01, 2015 - 12:00 a.m.
CVE-2015-2267
2015-06-0100:00:00
ubuntu.com
ubuntu.com
6
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:S/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
43.9%
mdeploy.php in Moodle through 2.5.9, 2.6.x before 2.6.9, 2.7.x before
2.7.6, and 2.8.x before 2.8.4 allows remote authenticated users to bypass
intended access restrictions and extract archives to arbitrary directories
via a crafted dataroot value.
Related
osv
osv
Moodle allows attackers to extract archives to arbitrary directories
2022-05-13 01:12:45
github
github
Moodle allows attackers to extract archives to arbitrary directories
2022-05-13 01:12:45
veracode
veracode
Authentication Bypass
2017-07-27 20:22:01
prion
prion
Design/Logic Flaw
2015-06-01 19:59:00
cve
cve
CVE-2015-2267
2015-06-01 19:59:00
nessus
nessus
Moodle < 2.6 / 2.6.x < 2.6.9 / 2.7.x < 2.7.6 / 2.8.x < 2.8.4 Multiple Vulnerabilities
2015-04-21 00:00:00
Fedora 21 : moodle-2.7.7-1.fc21 (2015-4724)
2015-04-07 00:00:00
Fedora 22 : moodle-2.8.5-1.fc22 (2015-4613)
2015-04-22 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: moodle-2.8.5-1.fc22
2015-04-21 18:26:37
[SECURITY] Fedora 21 Update: moodle-2.7.7-1.fc21
2015-04-05 14:33:57
[SECURITY] Fedora 20 Update: moodle-2.6.10-1.fc20
2015-04-05 14:29:57
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0110)
2022-01-28 00:00:00
Fedora Update for moodle FEDORA-2015-4724
2015-04-06 00:00:00
Fedora Update for moodle FEDORA-2015-4613
2015-07-07 00:00:00
mageia
mageia
Updated moodle packages fix security vulnerabilities
2015-03-19 02:01:47
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:S/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
43.9%
Related for UB:CVE-2015-2267