Vulnerabilities > CVE-2019-3851

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

network

low complexity

moodle

fedoraproject

NVD

Published: 2019-03-26

Updated: 2020-08-24

Summary

A vulnerability was found in moodle before versions 3.6.3 and 3.5.5. There was a link to site home within the the Boost theme's secure layout, meaning students could navigate out of the page.

Vulnerable Configurations

Part	Description	Count
Application	Moodle Moodle Moodle 3.5.0 Moodle Moodle 3.5.1 Moodle Moodle 3.5.2 Moodle Moodle 3.5.3 Moodle Moodle 3.5.4 Moodle Moodle 3.5.5 Moodle Moodle 3.6.1 Moodle Moodle 3.6.2 Moodle Moodle 3.6.3	11
OS	Fedoraproject Fedoraproject Fedora -	1

References

https://moodle.org/mod/forum/discuss.php?d=384014#p1547746
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3851

Vulnerabilities > CVE-2019-3851 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2019-3851"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2019-3851