Vulnerability Database
Blog
FAQ
Docs
CVE-2018-1043
See a problem?
Please try reporting it
to the source
first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2018-1043
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-1043.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2018-1043
Aliases
GHSA-hpwm-84h5-vqr8
Related
UBUNTU-CVE-2018-1043
Published
2018-01-22T08:29:00Z
Modified
2024-10-12T03:09:37.970189Z
Severity
6.5 (Medium)
CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
CVSS Calculator
Summary
[none]
Details
In Moodle 3.x, the setting for blocked hosts list can be bypassed with multiple A record hostnames.
References
http://www.securityfocus.com/bid/102769
https://moodle.org/mod/forum/discuss.php?d=364382
Affected packages
Git
/
github.com/moodle/moodle
Affected ranges
Type
GIT
Repo
https://github.com/moodle/moodle
Events
Introduced
0
Unknown introduced commit / All previous commits are affected
Last affected
07f6358b03027633f1c8e8b14cc03d771f4e7462
Last affected
22bce961b7d594da8f6649fe3c932901af1200d5
Last affected
23360fd95b4c4d9d7121475af1082fff19edbda2
Last affected
3d77676d51dd9bf54b4ab4f9515c1b90c90de355
Last affected
665c3ac59c35b7387a4fc70b8ac6600ce9ffeb87
Last affected
70fa678586c32a4710c62a59f71d63e02bd9e500
Last affected
896ce9b4e654b42c62a87d4e160be8e137e6a76f
Last affected
8e4341402a5c9326257b3036a936f98e08b5492f
Last affected
9146c518ece7c6b6623a9eb7a35aa174a6f1545b
Last affected
b182239f21c38ea57cddb41b0c03ef3eb02709f8
Last affected
b87a580aa3eb23d5f05d7f619fc40a89e0f86fe5
Last affected
c0523b9857ac9542341c35d1acec486923282c2f
Affected versions
v1.*
v1.0.0
v1.0.1
v1.0.2
v1.0.3
v1.0.4
v1.0.5
v1.0.6
v1.0.7
v1.0.8
v1.0.9
v1.1.0
v1.1.1
v1.2.0
v1.2.1
v1.3.0
v2.*
v2.0.0
v2.0.0-rc1
v2.0.0-rc2
v2.0.1
v2.0.2
v2.1.0
v2.2.0
v2.2.0-beta
v2.2.0-rc1
v2.3.0
v2.3.0-beta
v2.3.0-rc1
v2.4.0
v2.4.0-beta
v2.4.0-rc1
v2.5.0
v2.5.0-beta
v2.5.0-rc1
v2.6.0
v2.6.0-beta
v2.6.0-rc1
v2.7.0
v2.7.0-beta
v2.7.0-rc1
v2.7.0-rc2
v2.8.0
v2.8.0-beta
v2.8.0-rc1
v2.8.0-rc2
v2.9.0
v2.9.0-beta
v2.9.0-rc1
v2.9.0-rc2
v3.*
v3.0.0
v3.0.0-beta
v3.0.0-rc1
v3.0.0-rc2
v3.0.0-rc3
v3.0.0-rc4
v3.1.0
v3.1.0-beta
v3.1.0-rc1
v3.1.0-rc2
v3.2.0
v3.2.0-beta
v3.2.0-rc1
v3.2.0-rc2
v3.2.0-rc3
v3.2.0-rc4
v3.2.0-rc5
v3.2.1
v3.3.0
v3.3.0-beta
v3.3.0-rc1
v3.3.0-rc2
v3.3.0-rc3
v3.3.1
v3.3.2
v3.3.3
v3.4.0
v3.4.0-beta
v3.4.0-rc1
v3.4.0-rc2
v3.4.0-rc3
CVE-2018-1043 - OSV