Vulnerability CVE-2012-3388

Vulnerability Name:

CVE-2012-3388 (CCN-76955)

Assigned:

2012-07-17

Published:

2012-07-17

Updated:

2020-12-01

Summary:

The is_enrolled function in lib/accesslib.php in Moodle 2.2.x before 2.2.4 and 2.3.x before 2.3.1 does not properly interact with the caching feature, which might allow remote authenticated users to bypass an intended capability check via unspecified vectors that trigger caching of a user record.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N)
3.0 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-264

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2012-3388

Source: CONFIRM
Type: UNKNOWN
http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-33916

Source: CCN
Type: MSA-12-0040
Capabilities issue through caching

Source: MLIST
Type: UNKNOWN
[oss-security] 20120717 Moodle security notifications public

Source: CCN
Type: SA49890
Moodle Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
49890

Source: CCN
Type: OSVDB ID: 84035
Moodle lib/accesslib.php is_enrolled() Function Cached User Capability Verification Weakness

Source: BID
Type: UNKNOWN
54481

Source: CCN
Type: BID-54481
Moodle Multiple Security Vulnerabilities

Source: XF
Type: UNKNOWN
moodle-cached-users-sec-bypass(76955)

Source: XF
Type: UNKNOWN
moodle-cached-users-sec-bypass(76955)

Vulnerable Configuration:

Configuration 1:

cpe:/a:moodle:moodle:2.2.1:*:*:*:*:*:*:*

OR cpe:/a:moodle:moodle:2.2.0:*:*:*:*:*:*:*

OR cpe:/a:moodle:moodle:2.2.3:*:*:*:*:*:*:*

OR cpe:/a:moodle:moodle:2.3.0:*:*:*:*:*:*:*

OR cpe:/a:moodle:moodle:2.2.2:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:moodle:moodle:2.1.0:*:*:*:*:*:*:*

OR cpe:/a:moodle:moodle:2.1.2:*:*:*:*:*:*:*

OR cpe:/a:moodle:moodle:2.2.0:*:*:*:*:*:*:*

OR cpe:/a:moodle:moodle:2.1.3:*:*:*:*:*:*:*

OR cpe:/a:moodle:moodle:2.2.1:*:*:*:*:*:*:*

OR cpe:/a:moodle:moodle:2.3.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:com.ubuntu.bionic:def:201233880000000	V	CVE-2012-3388 on Ubuntu 18.04 LTS (bionic) - medium.	2012-07-23
oval:com.ubuntu.artful:def:20123388000	V	CVE-2012-3388 on Ubuntu 17.10 (artful) - medium.	2012-07-23
oval:com.ubuntu.trusty:def:20123388000	V	CVE-2012-3388 on Ubuntu 14.04 LTS (trusty) - medium.	2012-07-23
oval:com.ubuntu.xenial:def:201233880000000	V	CVE-2012-3388 on Ubuntu 16.04 LTS (xenial) - medium.	2012-07-23
oval:com.ubuntu.bionic:def:20123388000	V	CVE-2012-3388 on Ubuntu 18.04 LTS (bionic) - medium.	2012-07-23
oval:com.ubuntu.xenial:def:20123388000	V	CVE-2012-3388 on Ubuntu 16.04 LTS (xenial) - medium.	2012-07-23
oval:com.ubuntu.cosmic:def:20123388000	V	CVE-2012-3388 on Ubuntu 18.10 (cosmic) - medium.	2012-07-23
oval:com.ubuntu.cosmic:def:201233880000000	V	CVE-2012-3388 on Ubuntu 18.10 (cosmic) - medium.	2012-07-23
oval:com.ubuntu.precise:def:20123388000	V	CVE-2012-3388 on Ubuntu 12.04 LTS (precise) - medium.	2012-07-23

BACK