Lucene search
Veracode Vulnerability DatabaseVERACODE:13552HistoryMar 27, 2019 - 6:56 a.m.
Ignored Context Locking
2019-03-2706:56:16
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
3
0.001 Low
EPSS
Percentile
22.9%
Moodle is vulnerable to ignored context locking. The functions get_with_capability_join and get_users_by_capability do not take the context locking feature into account when considering user capability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| moodle/moodle | le | 3.5.4 | |
| moodle/moodle | le | 3.4.7 | |
| moodle/moodle | le | 3.6.2 |
Related
nvd
nvd
CVE-2019-3852
2019-03-26 18:29:00
cve
cve
CVE-2019-3852
2019-03-26 18:29:00
openvas
openvas
Moodle CMS 3.6.x <= 3.6.2 Authentication Bypass Vulnerability
2019-04-02 00:00:00
osv
osv
Moodle context freezing
2022-05-13 01:22:28
CVE-2019-3852
2019-03-26 18:29:00
ubuntucve
ubuntucve
CVE-2019-3852
2019-03-26 00:00:00
github
github
Moodle context freezing
2022-05-13 01:22:28
prion
prion
Design/Logic Flaw
2019-03-26 18:29:00
cvelist
cvelist
CVE-2019-3852
2019-03-26 17:47:06