CVE-2018-10889

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2018-10889

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-10889.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2018-10889

Aliases

GHSA-wmvq-q9h8-7j4g

Downstream

UBUNTU-CVE-2018-10889

Published

2018-07-10T18:29:00.233Z

Modified

2026-04-10T04:04:09.088276Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

[none]

Details

A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7. No option existed to omit logs from data privacy exports, which may contain details of other users who interacted with the requester.

References

Affected packages

Git / github.com/moodle/moodle

Affected ranges

Type

GIT

Repo

https://github.com/moodle/moodle

Events

Introduced

b87a580aa3eb23d5f05d7f619fc40a89e0f86fe5

Fixed

027b757f20c8e50d6fec2ef6f1ff2d85075690fc

Introduced

665c3ac59c35b7387a4fc70b8ac6600ce9ffeb87

Fixed

5ebb6eb15c250e175e2079bce5bb1c74eae29477

Introduced

46574904afd39578fa4146bf1fc5c401ac680aa6

Fixed

5b78584fdbda65ac516f39f9e66f9376a793de92

Database specific

{
    "versions": [
        {
            "introduced": "3.3.0"
        },
        {
            "fixed": "3.3.7"
        },
        {
            "introduced": "3.4.0"
        },
        {
            "fixed": "3.4.4"
        },
        {
            "introduced": "3.5.0"
        },
        {
            "fixed": "3.5.1"
        }
    ]
}

Affected versions

v3.*

v3.3.0

v3.3.1

v3.3.2

v3.3.3

v3.3.4

v3.3.5

v3.3.6

v3.4.0

v3.4.1

v3.4.2

v3.4.3

v3.5.0

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-10889.json"