CVE-2018-10889

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2018-10889

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-10889.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2018-10889

Aliases

GHSA-wmvq-q9h8-7j4g

Related

UBUNTU-CVE-2018-10889

Published

2018-07-10T18:29:00Z

Modified

2024-09-03T02:03:59.403857Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

[none]

Details

A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7. No option existed to omit logs from data privacy exports, which may contain details of other users who interacted with the requester.

References

Affected packages

Git / github.com/moodle/moodle

Affected ranges

Type: GIT
Repo: https://github.com/moodle/moodle
Events: Introduced

b87a580aa3eb23d5f05d7f619fc40a89e0f86fe5

Fixed

027b757f20c8e50d6fec2ef6f1ff2d85075690fc

Affected versions

v3.*

v3.3.0

v3.3.1

v3.3.2

v3.3.3

v3.3.4

v3.3.5

v3.3.6