CVE-2019-10134
4.2
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L
Summary
A flaw was found in Moodle before 3.7, 3.6.4, 3.5.6, 3.4.9 and 3.1.18. The size of users' private file uploads via email were not correctly checked, so their quota allowance could be exceeded.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Moodle | moodle | 3.7, 3.6.4, 3.5.6, 3.4.9 and 3.1.18 | affected |
Weaknesses
- CWE-20: CWE-20
ADP Enrichment
CVE Program Container
Additional References
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10134
- https://moodle.org/mod/forum/discuss.php?d=386524
References
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10134
- https://moodle.org/mod/forum/discuss.php?d=386524
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.