2017-10-16 12:31:07 -04:00
{
2019-03-17 23:37:27 +00:00
"CVE_data_meta" : {
"ASSIGNER" : "secalert@redhat.com" ,
"ID" : "CVE-2013-1836" ,
"STATE" : "PUBLIC"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a" ,
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
} ,
"vendor_name" : "n/a"
}
]
}
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
2017-10-16 12:31:07 -04:00
{
2019-03-17 23:37:27 +00:00
"lang" : "eng" ,
"value" : "Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 does not properly manage privileges for WebDAV repositories, which allows remote authenticated users to read, modify, or delete arbitrary site-wide repositories by leveraging certain read access."
2017-10-16 12:31:07 -04:00
}
2019-03-17 23:37:27 +00:00
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "n/a"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
"name" : "FEDORA-2013-4387" ,
"refsource" : "FEDORA" ,
"url" : "http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101358.html"
} ,
{
"name" : "FEDORA-2013-4404" ,
"refsource" : "FEDORA" ,
"url" : "http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101310.html"
} ,
{
"name" : "[oss-security] 20130325 Moodle security notifications public" ,
"refsource" : "MLIST" ,
"url" : "http://openwall.com/lists/oss-security/2013/03/25/2"
} ,
{
"name" : "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-37852" ,
"refsource" : "CONFIRM" ,
"url" : "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-37852"
} ,
{
"name" : "https://moodle.org/mod/forum/discuss.php?d=225348" ,
"refsource" : "CONFIRM" ,
"url" : "https://moodle.org/mod/forum/discuss.php?d=225348"
}
]
}
}
