Autolabproject

Autolab

11 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2024-53260

  • EPSS 0.25%
  • Veröffentlicht 27.11.2024 22:15:05
  • Zuletzt bearbeitet 21.04.2025 15:07:22

Autolab is a course management service that enables auto-graded programming assignments. A user can modify their first and or last name to include a valid excel / spreadsheet formula. When an instructor downloads their course's roster and opens, this...

5.3

CVE-2024-53258

  • EPSS 0.09%
  • Veröffentlicht 25.11.2024 20:15:10
  • Zuletzt bearbeitet 07.04.2025 19:56:52

Autolab is a course management service that enables auto-graded programming assignments. From Autolab versions v.3.0.0 onward students can download all assignments from another student, as long as they are logged in, using the download_all_submission...

5.4

CVE-2024-52584

  • EPSS 0.09%
  • Veröffentlicht 18.11.2024 21:15:07
  • Zuletzt bearbeitet 21.01.2025 17:55:15

Autolab is a course management service that enables auto-graded programming assignments. There is a vulnerability in version 3.0.1 where CAs can view or edit the grade for any submission ID, even if they are not a CA for the class that has the submis...

5.4

CVE-2024-52585

  • EPSS 0.2%
  • Veröffentlicht 18.11.2024 21:15:07
  • Zuletzt bearbeitet 21.01.2025 17:56:12

Autolab is a course management service that enables auto-graded programming assignments. There is an HTML injection vulnerability in version 3.0.1 that can affect instructors and CAs on the grade submissions page. The issue is patched in version 3.0....

8.8

CVE-2024-49376

  • EPSS 0.27%
  • Veröffentlicht 25.10.2024 13:15:17
  • Zuletzt bearbeitet 14.11.2024 22:49:50

Autolab, a course management service that enables auto-graded programming assignments, has misconfigured reset password permissions in version 3.0.0. For email-based accounts, users with insufficient privileges could reset and theoretically access pr...

6.5

CVE-2023-44395

  • EPSS 0.14%
  • Veröffentlicht 22.01.2024 15:15:08
  • Zuletzt bearbeitet 21.11.2024 08:25:48

Autolab is a course management service that enables instructors to offer autograded programming assignments to their students over the Web. Path traversal vulnerabilities were discovered in Autolab's assessment functionality in versions of Autolab pr...

7.2

CVE-2023-32676

  • EPSS 0.38%
  • Veröffentlicht 26.05.2023 23:15:18
  • Zuletzt bearbeitet 21.11.2024 08:03:49

Autolab is a course management service that enables auto-graded programming assignments. A Tar slip vulnerability was found in the Install assessment functionality of Autolab. To exploit this vulnerability an authenticated attacker with instructor pe...

7.2

CVE-2023-32317

  • EPSS 0.38%
  • Veröffentlicht 26.05.2023 23:15:16
  • Zuletzt bearbeitet 21.11.2024 08:03:06

Autolab is a course management service that enables auto-graded programming assignments. A Tar slip vulnerability was found in the MOSS cheat checker functionality of Autolab. To exploit this vulnerability an authenticated attacker with instructor pe...

6.5

CVE-2022-41956

  • EPSS 0.35%
  • Veröffentlicht 14.01.2023 01:15:13
  • Zuletzt bearbeitet 21.11.2024 07:24:09

Autolab is a course management service, initially developed by a team of students at Carnegie Mellon University, that enables instructors to offer autograded programming assignments to their students over the Web. A file disclosure vulnerability was ...

8.8

CVE-2022-41955

  • EPSS 2.82%
  • Veröffentlicht 14.01.2023 01:15:12
  • Zuletzt bearbeitet 21.11.2024 07:24:08

Autolab is a course management service, initially developed by a team of students at Carnegie Mellon University, that enables instructors to offer autograded programming assignments to their students over the Web. A remote code execution vulnerabilit...