CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
EPSS
Percentile
44.6%
Updated moodle packages fix security vulnerabilities: In Moodle before 2.6.5, users who had not yet posted the required answer in a Q&A; forum in order to access past posts were able to see the name of the last person who had posted, as other authors are visible in /mod/forum/view.php before the student has posted their own answer (CVE-2014-3617).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 3 | noarch | moodle | < 2.6.5-1 | moodle-2.6.5-1.mga3 |
Mageia | 4 | noarch | moodle | < 2.6.5-1 | moodle-2.6.5-1.mga4 |