Vulnerabilities > CVE-2022-39196 - Unspecified vulnerability in Blackboard Learn 1.10.1

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

blackboard

NVD

Published: 2022-09-05

Updated: 2024-08-03

Summary

Blackboard Learn 1.10.1 allows remote authenticated users to read unintended files by entering student credentials and then directly visiting a certain webapps/bbcms/execute/ URL. Note: The vendor disputes this stating this cannot be reproduced.

Vulnerable Configurations

Part	Description	Count
Application	Blackboard Blackboard Blackboard Learn 1.10.1	1

References

https://github.com/DayiliWaseem/CVE-2022-39196-