admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 01:02:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2016/CVE-2016-21xx/CVE-2016-2155.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

206 lines
7.2 KiB
JSON
Raw Blame History

{
"id": "CVE-2016-2155",
"sourceIdentifier": "secalert@redhat.com",
"published": "2016-05-22T20:59:04.130",
"lastModified": "2020-12-01T14:54:51.107",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "The grade-reporting feature in Singleview (aka Single View) in Moodle 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 does not consider the moodle/grade:manage capability, which allows remote authenticated users to modify \"Exclude grade\" settings by leveraging the Non-Editing Instructor role."
},
{
"lang": "es",
"value": "La funcionalidad grade-reporting en Singleview (tambi\u00e9n conocida como Single View) en Moodle 2.8.x en versiones anteriores a 2.8.11, 2.9.x en versiones anteriores a 2.9.5 y 3.0.x en versiones anteriores a 3.0.3 no considera la capacidad moodle/grade:manage, lo que permite a usuarios remotos autenticados modificar ajustes \"Exclude grade\" aprovechando el rol Non-Editing Instructor."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"availabilityImpact": "NONE",
"baseScore": 4.0
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-264"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "12737AF4-B2D5-4661-B06A-6A06FE95EC2D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.8.1:*:*:*:*:*:*:*",
"matchCriteriaId": "88C59A94-D225-478A-B23E-41C4324BC643"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.8.2:*:*:*:*:*:*:*",
"matchCriteriaId": "192EA69B-A1E1-4E0D-8E73-76EB74CCDE49"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.8.3:*:*:*:*:*:*:*",
"matchCriteriaId": "D88385B1-EEFB-4825-BD8F-215C39FD86DA"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.8.4:*:*:*:*:*:*:*",
"matchCriteriaId": "A3BE2782-D167-4237-B57D-2E4C04571524"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.8.5:*:*:*:*:*:*:*",
"matchCriteriaId": "F277F979-12FA-47A5-B0A5-D174C2127A7D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.8.6:*:*:*:*:*:*:*",
"matchCriteriaId": "38498617-8E45-4E73-AE9F-C7A0D18FDE47"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.8.7:*:*:*:*:*:*:*",
"matchCriteriaId": "C9047769-BFF4-42DB-8B19-F6D16FA910A1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.8.8:*:*:*:*:*:*:*",
"matchCriteriaId": "73A75ACE-FED2-4830-B259-744ABF25463E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.8.9:*:*:*:*:*:*:*",
"matchCriteriaId": "F04EBA18-DFFF-4529-B647-98191325663B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.8.10:*:*:*:*:*:*:*",
"matchCriteriaId": "A3A746AB-5D58-4196-962A-D22454C3550B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C9224D94-1C48-468C-A39B-B2694ED178F4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.9.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1C7EE9AD-E122-4288-9416-6D8F8790D75D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.9.2:*:*:*:*:*:*:*",
"matchCriteriaId": "C4FC2CC1-787B-480F-BC41-538CE2507CB7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.9.3:*:*:*:*:*:*:*",
"matchCriteriaId": "098BADF2-C1D3-406E-9E79-E25483178C99"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:2.9.4:*:*:*:*:*:*:*",
"matchCriteriaId": "611B027A-38D6-445E-BFA9-FA68524147DB"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:3.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "8C22EB95-6D8F-45F8-A000-795E259CF06D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:3.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "65FE0DC7-131E-4ED1-9CFF-70C79995A0B9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:moodle:moodle:3.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "80B3EEF9-F300-461F-9407-0FFB3E3CD421"
}
]
}
]
}
],
"references": [
{
"url": "http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52378",
"source": "secalert@redhat.com"
},
{
"url": "http://www.openwall.com/lists/oss-security/2016/03/21/1",
"source": "secalert@redhat.com"
},
{
"url": "http://www.securitytracker.com/id/1035333",
"source": "secalert@redhat.com"
},
{
"url": "https://moodle.org/mod/forum/discuss.php?d=330177",
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink