CVE-2012-1169

EPSS 0.99%
Veröffentlicht 14.11.2019 17:15:12
Zuletzt bearbeitet 21.11.2024 01:36:34
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

Moodle before 2.2.2 has Personal information disclosure, when administrative setting users name display is set to first name only full names are shown in page breadcrumbs.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Moodle ≫ Moodle Version < 2.2.2

Fedoraproject ≫ Fedora Version15

Fedoraproject ≫ Fedora Version16

Fedoraproject ≫ Fedora Version17

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.99%	0.748

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://lists.fedoraproject.org/pipermail/package-announce/2012-April/077635.html

Third Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078209.html

Third Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078210.html

Third Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2012-May/080712.html

Third Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2012-May/081047.html

Third Party Advisory

https://access.redhat.com/security/cve/cve-2012-1169

Broken Link

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-1169

Patch

Third Party Advisory

Issue Tracking

https://moodle.org/mod/forum/discuss.php?d=198625

Patch

Vendor Advisory

https://security-tracker.debian.org/tracker/CVE-2012-1169

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2012-1169

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-1169

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-1169

EUVD