CVE-2012-2359
Published Jul 21, 2012
Last updated 2 years ago
Overview
- Description
- admin/roles/override.php in Moodle 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to gain privileges by leveraging the teacher role and modifying their own capabilities, as demonstrated by obtaining the backup:userinfo capability.
- Source
- secalert@redhat.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.5
- Impact score
- 6.4
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-264
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:moodle:moodle:2.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DD248A1D-CACC-4E76-925A-078B736442AE"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9B8A0403-0869-495F-B7C0-13A387549C7A"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "39791F43-CF89-485B-AA8B-634C282BB025"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "428E4846-8C9E-4592-8437-88FCDCED704D"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A4096977-3258-48B0-9C7B-D43FBC8BB1EA"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "448E5353-CD0E-407C-84F4-5E6D014A28FE"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.0.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D57A08BD-67FA-4899-96BD-C84896321E51"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.0.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2D1221DB-8DD0-4DB6-AAF8-BE80C7B4F58F"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.0.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "481F0F56-7FF1-4B40-B231-A39B66353646"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:moodle:moodle:2.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "18C6F348-DAE9-4440-8B3A-8D92ADC6606F"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "367537BF-CBDF-4CBB-91B4-6E5A567EF605"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DABBF325-C48A-4838-AC5D-0565C78976CD"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "02B72177-DFB0-4242-9ED6-068E5751579B"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7226EE65-CC9F-4FDA-9791-3C8047D5C04C"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.1.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FDC55ECE-8185-4FC0-A4C9-14AABD136650"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:moodle:moodle:2.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "15A73CE2-73DA-4274-89E0-DD9A413ED17F"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "39075F6E-2925-4897-B1DE-C86A066DF54B"
},
{
"criteria": "cpe:2.3:a:moodle:moodle:2.2.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "179DBC2B-B35F-4A19-B522-DF996D5E13E4"
}
],
"operator": "OR"
}
]
}
]