ByteOS Network

Vulnerability Details :

CVE-2012-3398

Assigner-redhat

Assigner Org ID-53f830b8-0a3f-465b-8143-3b8a9948e749

Published At-23 Jul, 2012 | 21:00

Updated At-06 Aug, 2024 | 20:05

Algorithmic complexity vulnerability in Moodle 1.9.x before 1.9.19, 2.0.x before 2.0.10, 2.1.x before 2.1.7, and 2.2.x before 2.2.4 allows remote authenticated users to cause a denial of service (CPU consumption) by using the advanced-search feature on a database activity that has many records.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:redhat

Assigner Org ID:53f830b8-0a3f-465b-8143-3b8a9948e749

Published At:23 Jul, 2012 | 21:00

Updated At:06 Aug, 2024 | 20:05

▼CVE Numbering Authority (CNA)

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://git.moodle.org/gw?p=moodle.git&a=search&h=refs%2Fheads%2FMOODLE_22_STABLE&st=commit&s=MDL-32126	x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/76964	vdb-entry x_refsource_XF
http://secunia.com/advisories/49890	third-party-advisory x_refsource_SECUNIA
http://openwall.com/lists/oss-security/2012/07/17/1	mailing-list x_refsource_MLIST
http://www.securityfocus.com/bid/54481	vdb-entry x_refsource_BID

Hyperlink: http://git.moodle.org/gw?p=moodle.git&a=search&h=refs%2Fheads%2FMOODLE_22_STABLE&st=commit&s=MDL-32126

Resource:

x_refsource_CONFIRM

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/76964

Resource:

vdb-entry

x_refsource_XF

Hyperlink: http://secunia.com/advisories/49890

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://openwall.com/lists/oss-security/2012/07/17/1

Resource:

mailing-list

x_refsource_MLIST

Hyperlink: http://www.securityfocus.com/bid/54481

Resource:

vdb-entry

x_refsource_BID

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://git.moodle.org/gw?p=moodle.git&a=search&h=refs%2Fheads%2FMOODLE_22_STABLE&st=commit&s=MDL-32126	x_refsource_CONFIRM x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/76964	vdb-entry x_refsource_XF x_transferred
http://secunia.com/advisories/49890	third-party-advisory x_refsource_SECUNIA x_transferred
http://openwall.com/lists/oss-security/2012/07/17/1	mailing-list x_refsource_MLIST x_transferred
http://www.securityfocus.com/bid/54481	vdb-entry x_refsource_BID x_transferred

Hyperlink: http://git.moodle.org/gw?p=moodle.git&a=search&h=refs%2Fheads%2FMOODLE_22_STABLE&st=commit&s=MDL-32126

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/76964

Resource:

vdb-entry

x_refsource_XF

x_transferred

Hyperlink: http://secunia.com/advisories/49890

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://openwall.com/lists/oss-security/2012/07/17/1

Resource:

mailing-list

x_refsource_MLIST

x_transferred

Hyperlink: http://www.securityfocus.com/bid/54481

Resource:

vdb-entry

x_refsource_BID

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:secalert@redhat.com

Published At:23 Jul, 2012 | 21:55

Updated At:11 Apr, 2025 | 00:51

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	4.0	MEDIUM	AV:N/AC:L/Au:S/C:N/I:N/A:P
Primary	2.0	4.0	MEDIUM	AV:N/AC:L/Au:S/C:N/I:N/A:P

Type: Primary

Version: 2.0

Base score: 4.0

Base severity: MEDIUM

Vector:

AV:N/AC:L/Au:S/C:N/I:N/A:P

Type: Primary

Version: 2.0

Base score: 4.0

Base severity: MEDIUM

Vector:

AV:N/AC:L/Au:S/C:N/I:N/A:P

CPE Matches

Moodle Pty Ltd

>>moodle>>1.9.1

cpe:2.3:a:moodle:moodle:1.9.1:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.2

cpe:2.3:a:moodle:moodle:1.9.2:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.3

cpe:2.3:a:moodle:moodle:1.9.3:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.4

cpe:2.3:a:moodle:moodle:1.9.4:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.5

cpe:2.3:a:moodle:moodle:1.9.5:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.6

cpe:2.3:a:moodle:moodle:1.9.6:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.7

cpe:2.3:a:moodle:moodle:1.9.7:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.8

cpe:2.3:a:moodle:moodle:1.9.8:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.9

cpe:2.3:a:moodle:moodle:1.9.9:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.10

cpe:2.3:a:moodle:moodle:1.9.10:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.11

cpe:2.3:a:moodle:moodle:1.9.11:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.12

cpe:2.3:a:moodle:moodle:1.9.12:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.13

cpe:2.3:a:moodle:moodle:1.9.13:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.14

cpe:2.3:a:moodle:moodle:1.9.14:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.15

cpe:2.3:a:moodle:moodle:1.9.15:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.16

cpe:2.3:a:moodle:moodle:1.9.16:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.17

cpe:2.3:a:moodle:moodle:1.9.17:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>1.9.18

cpe:2.3:a:moodle:moodle:1.9.18:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.0.0

cpe:2.3:a:moodle:moodle:2.0.0:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.0.1

cpe:2.3:a:moodle:moodle:2.0.1:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.0.2

cpe:2.3:a:moodle:moodle:2.0.2:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.0.3

cpe:2.3:a:moodle:moodle:2.0.3:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.0.4

cpe:2.3:a:moodle:moodle:2.0.4:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.0.5

cpe:2.3:a:moodle:moodle:2.0.5:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.0.6

cpe:2.3:a:moodle:moodle:2.0.6:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.0.7

cpe:2.3:a:moodle:moodle:2.0.7:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.0.8

cpe:2.3:a:moodle:moodle:2.0.8:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.0.9

cpe:2.3:a:moodle:moodle:2.0.9:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.1.0

cpe:2.3:a:moodle:moodle:2.1.0:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.1.1

cpe:2.3:a:moodle:moodle:2.1.1:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.1.2

cpe:2.3:a:moodle:moodle:2.1.2:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.1.3

cpe:2.3:a:moodle:moodle:2.1.3:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.1.4

cpe:2.3:a:moodle:moodle:2.1.4:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.1.5

cpe:2.3:a:moodle:moodle:2.1.5:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.1.6

cpe:2.3:a:moodle:moodle:2.1.6:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.2.0

cpe:2.3:a:moodle:moodle:2.2.0:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.2.1

cpe:2.3:a:moodle:moodle:2.2.1:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.2.2

cpe:2.3:a:moodle:moodle:2.2.2:*:*:*:*:*:*:*

Moodle Pty Ltd

>>moodle>>2.2.3

cpe:2.3:a:moodle:moodle:2.2.3:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
NVD-CWE-Other	Primary	nvd@nist.gov

CWE ID: NVD-CWE-Other

Type: Primary

Source: nvd@nist.gov

Evaluator Description

Per: http://cwe.mitre.org/data/definitions/407.html 'CWE-407: Algorithmic Complexity'

References

Hyperlink	Source	Resource
http://git.moodle.org/gw?p=moodle.git&a=search&h=refs%2Fheads%2FMOODLE_22_STABLE&st=commit&s=MDL-32126	secalert@redhat.com	N/A
http://openwall.com/lists/oss-security/2012/07/17/1	secalert@redhat.com	N/A
http://secunia.com/advisories/49890	secalert@redhat.com	N/A
http://www.securityfocus.com/bid/54481	secalert@redhat.com	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/76964	secalert@redhat.com	N/A
http://git.moodle.org/gw?p=moodle.git&a=search&h=refs%2Fheads%2FMOODLE_22_STABLE&st=commit&s=MDL-32126	af854a3a-2127-422b-91ae-364da2661108	N/A
http://openwall.com/lists/oss-security/2012/07/17/1	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/49890	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/54481	af854a3a-2127-422b-91ae-364da2661108	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/76964	af854a3a-2127-422b-91ae-364da2661108	N/A

Hyperlink: http://git.moodle.org/gw?p=moodle.git&a=search&h=refs%2Fheads%2FMOODLE_22_STABLE&st=commit&s=MDL-32126

Source: secalert@redhat.com

Resource: N/A

Hyperlink: http://openwall.com/lists/oss-security/2012/07/17/1

Source: secalert@redhat.com

Resource: N/A

Hyperlink: http://secunia.com/advisories/49890

Source: secalert@redhat.com

Resource: N/A

Hyperlink: http://www.securityfocus.com/bid/54481

Source: secalert@redhat.com

Resource: N/A

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/76964

Source: secalert@redhat.com

Resource: N/A

Hyperlink: http://git.moodle.org/gw?p=moodle.git&a=search&h=refs%2Fheads%2FMOODLE_22_STABLE&st=commit&s=MDL-32126