CVE-2018-10889

Sažetak

A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7. No option existed to omit logs from data privacy exports, which may contain details of other users who interacted with the requester.

Reference

http://www.securityfocus.com/bid/104733
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10889
https://moodle.org/mod/forum/discuss.php?d=373369

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

09-10-2019 - 23:33

Objavljeno

10-07-2018 - 18:29