CVE-2017-1000003

Source
https://cve.org/CVERecord?id=CVE-2017-1000003
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-1000003.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-1000003
Published
2017-07-17T13:18:16Z
Modified
2026-07-08T10:54:11.968582Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

ATutor versions 2.2.1 and earlier are vulnerable to an incorrect access control check vulnerability in the Social Application component resulting in privilege escalation. ATutor versions 2.2.1 and earlier are vulnerable to an incorrect access control check vulnerability in the Module component resulting in privilege escalation. ATutor versions 2.2.1 and earlier are vulnerable to a incorrect access control check vulnerability in the Alternative Content component resulting in privilege escalation.

References

Affected packages

Git / github.com/atutor/atutor

Affected ranges

Type
GIT
Repo
https://github.com/atutor/atutor
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
Database specific
{
    "cpe": "cpe:2.3:a:atutor:atutor:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.2.1"
        }
    ],
    "source": "CPE_RANGE"
}

Affected versions

Other
atutor_1_4_2
atutor_1_5
atutor_1_5_1
atutor_1_5_2
atutor_1_5_3
atutor_1_5_3_1
atutor_1_5_3_2
atutor_1_5_3_3
atutor_1_5_5
atutor_2_1
atutor_2_1_1
atutor_2_2
atutor_2_2_1
start

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-1000003.json"