Lucene search
Gentoo FoundationMGASA-2014-0379HistorySep 15, 2014 - 2:36 p.m.
Updated moodle packages fix security vulnerbilities
2014-09-1514:36:30
Gentoo Foundation
advisories.mageia.org
15
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
EPSS
0.001
Percentile
44.6%
Updated moodle packages fix security vulnerabilities: In Moodle before 2.6.5, users who had not yet posted the required answer in a Q&A; forum in order to access past posts were able to see the name of the last person who had posted, as other authors are visible in /mod/forum/view.php before the student has posted their own answer (CVE-2014-3617).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 3 | noarch | moodle | < 2.6.5-1 | moodle-2.6.5-1.mga3 |
| Mageia | 4 | noarch | moodle | < 2.6.5-1 | moodle-2.6.5-1.mga4 |
Related
prion
prion
Design/Logic Flaw
2014-09-15 14:55:00
cvelist
cvelist
CVE-2014-3617
2014-09-15 14:00:00
osv
osv
Moodle allows discovery of an author's username
2022-05-13 01:12:42
github
github
Moodle allows discovery of an author's username
2022-05-13 01:12:42
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0379)
2022-01-28 00:00:00
cve
cve
CVE-2014-3617
2014-09-15 14:55:11
veracode
veracode
Information Disclosure
2017-07-19 09:10:04
ubuntucve
ubuntucve
CVE-2014-3617
2014-09-15 00:00:00
nvd
nvd
CVE-2014-3617
2014-09-15 14:55:11
nessus
nessus
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
EPSS
0.001
Percentile
44.6%
Related for MGASA-2014-0379