Vulnerability Details CVE-2017-12157
In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.2%
CVSS Severity
CVSS v3 Score 4.3
CVSS v2 Score 4.0
Products affected by CVE-2017-12157
-
cpe:2.3:a:moodle:moodle:3.0.0
-
cpe:2.3:a:moodle:moodle:3.0.1
-
cpe:2.3:a:moodle:moodle:3.0.10
-
cpe:2.3:a:moodle:moodle:3.0.2
-
cpe:2.3:a:moodle:moodle:3.0.3
-
cpe:2.3:a:moodle:moodle:3.0.4
-
cpe:2.3:a:moodle:moodle:3.0.5
-
cpe:2.3:a:moodle:moodle:3.0.6
-
cpe:2.3:a:moodle:moodle:3.0.7
-
cpe:2.3:a:moodle:moodle:3.0.8
-
cpe:2.3:a:moodle:moodle:3.0.9
-
cpe:2.3:a:moodle:moodle:3.1.0
-
cpe:2.3:a:moodle:moodle:3.1.1
-
cpe:2.3:a:moodle:moodle:3.1.2
-
cpe:2.3:a:moodle:moodle:3.1.3
-
cpe:2.3:a:moodle:moodle:3.1.4
-
cpe:2.3:a:moodle:moodle:3.1.5
-
cpe:2.3:a:moodle:moodle:3.1.6
-
cpe:2.3:a:moodle:moodle:3.1.7
-
cpe:2.3:a:moodle:moodle:3.2.0
-
cpe:2.3:a:moodle:moodle:3.2.1
-
cpe:2.3:a:moodle:moodle:3.2.2
-
cpe:2.3:a:moodle:moodle:3.2.3
-
cpe:2.3:a:moodle:moodle:3.2.4
-
cpe:2.3:a:moodle:moodle:3.3.0
-
cpe:2.3:a:moodle:moodle:3.3.1