Security Vulnerabilities - CVEs Published In November 2019
Moodle before 2.2.2 has a course information leak in gradebook where users are able to see hidden grade items in export
CVSS Score
4.3
EPSS Score
0.009
Published
2019-11-14
Moodle before 2.2.2: Overview report allows users to see hidden courses
CVSS Score
4.3
EPSS Score
0.009
Published
2019-11-14
Moodle before 2.2.2 has a permission issue in Forum Subscriptions where unenrolled users can subscribe/unsubscribe via mod/forum/index.php
CVSS Score
2.7
EPSS Score
0.007
Published
2019-11-14
Moodle before 2.2.2: Course information leak via hidden courses being displayed in tag search results
CVSS Score
4.3
EPSS Score
0.009
Published
2019-11-14
Moodle before 2.2.2 has Personal information disclosure, when administrative setting users name display is set to first name only full names are shown in page breadcrumbs.
CVSS Score
5.3
EPSS Score
0.01
Published
2019-11-14
Adobe Media Encoder versions 13.1 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
CVSS Score
4.3
EPSS Score
0.016
Published
2019-11-14
Adobe Media Encoder versions 13.1 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution .
CVSS Score
9.8
EPSS Score
0.084
Published
2019-11-14
Adobe Illustrator CC versions 23.1 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .
CVSS Score
9.8
EPSS Score
0.046
Published
2019-11-14
Adobe Illustrator CC versions 23.1 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution .
CVSS Score
9.8
EPSS Score
0.046
Published
2019-11-14
Adobe Animate CC versions 19.2.1 and earlier have an insecure library loading (dll hijacking) vulnerability. Successful exploitation could lead to privilege escalation.
CVSS Score
7.8
EPSS Score
0.002
Published
2019-11-14