Lucene search

[email protected]NVD:CVE-2011-4593

HistoryJul 20, 2012 - 10:40 a.m.

CVE-2011-4593

2012-07-2010:40:36

CWE-200

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

AI Score

6.1

Confidence

Low

EPSS

0.001

Percentile

45.6%

JSON

Moodle 1.9.x before 1.9.15, 2.0.x before 2.0.6, and 2.1.x before 2.1.3 does not properly handle user/action_redir group messages, which allows remote authenticated users to discover e-mail addresses by visiting the messaging interface.

Affected configurations

Nvd

Node

moodlemoodleMatch1.9.1

moodlemoodleMatch1.9.2

moodlemoodleMatch1.9.3

moodlemoodleMatch1.9.4

moodlemoodleMatch1.9.5

moodlemoodleMatch1.9.6

moodlemoodleMatch1.9.7

moodlemoodleMatch1.9.8

moodlemoodleMatch1.9.9

moodlemoodleMatch1.9.10

moodlemoodleMatch1.9.11

moodlemoodleMatch1.9.12

moodlemoodleMatch1.9.13

moodlemoodleMatch1.9.14

Node

moodlemoodleMatch2.0.0

moodlemoodleMatch2.0.1

moodlemoodleMatch2.0.2

moodlemoodleMatch2.0.3

moodlemoodleMatch2.0.4

moodlemoodleMatch2.0.5

Node

moodlemoodleMatch2.1.0

moodlemoodleMatch2.1.1

moodlemoodleMatch2.1.2

References

git.moodle.org/gw?p=moodle.git%3Ba=commit%3Bh=e94113a859015a4a80b9397957b8fc4044e2951f

moodle.org/mod/forum/discuss.php?d=191762

bugzilla.redhat.com/show_bug.cgi?id=761248

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

AI Score

6.1

Confidence

Low

EPSS

0.001

Percentile

45.6%

JSON

Related for NVD:CVE-2011-4593

ubuntucve1 prion1 cve1 cvelist1 fedora2 openvas4 nessus2