Metrics
Affected Vendors & Products
Link | Providers |
---|---|
https://vuldb.com/?ctiid.284352 | |
https://vuldb.com/?id.284352 |
Tue, 19 Nov 2024 16:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Viwis learning Management System
|
|
CPEs | cpe:2.3:a:viwis:learning_management_system:9.11:*:*:*:*:*:*:* | |
Vendors & Products |
Viwis learning Management System
|
Wed, 13 Nov 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Viwis
Viwis lms |
|
CPEs | cpe:2.3:a:viwis:lms:*:*:*:*:*:*:*:* | |
Vendors & Products |
Viwis
Viwis lms |
|
Metrics |
ssvc
|
Wed, 13 Nov 2024 10:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability was found in VIWIS LMS 9.11. It has been classified as critical. Affected is an unknown function of the component Print Handler. The manipulation leads to missing authorization. It is possible to launch the attack remotely. A user with the role learner can use the administrative print function with an active session before and after an exam slot to access the entire exam including solutions in the web application. It is recommended to apply a patch to fix this issue. | |
Title | VIWIS LMS Print authorization | |
Weaknesses | CWE-862 CWE-863 |
|
References |
| |
Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published: 2024-11-13T09:47:38.973Z
Updated: 2024-11-13T14:55:18.860Z
Reserved: 2024-08-20T08:04:18.419Z
Link: CVE-2024-8001
Updated: 2024-11-13T14:54:59.460Z
Status : Analyzed
Published: 2024-11-13T10:15:04.593
Modified: 2024-11-19T15:41:25.973
Link: CVE-2024-8001
No data.