Lucene search
Ubuntu.comUB:CVE-2015-3177HistoryJun 01, 2015 - 12:00 a.m.
CVE-2015-3177
2015-06-0100:00:00
ubuntu.com
ubuntu.com
12
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
EPSS
0.002
Percentile
59.2%
Moodle 2.8.x before 2.8.6 does not consider the tool/monitor:subscribe
capability before entering subscriptions to site-wide event-monitor rules,
which allows remote authenticated users to obtain sensitive information via
a subscription request.
Notes
| Author | Note |
|---|---|
| sbeattie | moodle 2.8 only |
Related
prion
prion
Cross site request forgery (csrf)
2015-06-01 19:59:00
veracode
veracode
Information Disclosure
2017-07-25 09:20:53
nvd
nvd
CVE-2015-3177
2015-06-01 19:59:20
cvelist
cvelist
CVE-2015-3177
2015-06-01 19:00:00
cve
cve
CVE-2015-3177
2015-06-01 19:59:20
nessus
nessus
Moodle 2.8.x < 2.8.6 Multiple Vulnerabilities
2016-07-21 00:00:00
Fedora 21 : moodle-2.7.9-1.fc21 (2015-14996)
2015-09-16 00:00:00
Fedora 23 : moodle-2.9.1-1.fc23 (2015-14987)
2015-09-21 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: moodle-2.7.9-1.fc21
2015-09-15 21:22:02
[SECURITY] Fedora 22 Update: moodle-2.8.7-1.fc22
2015-09-15 19:54:05
[SECURITY] Fedora 23 Update: moodle-2.9.1-1.fc23
2015-09-18 19:33:20
openvas
openvas
Fedora Update for moodle FEDORA-2015-14988
2015-09-16 00:00:00
Fedora Update for moodle FEDORA-2015-14996
2015-09-16 00:00:00
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
EPSS
0.002
Percentile
59.2%
Related for UB:CVE-2015-3177