IT Security Vulnerability Roundup – March 2019

The Common Vulnerability Scoring System (CVSS) provides a way to capture the principal characteristics of a vulnerability and produce a numerical score reflecting its severity. Last month’s vulnerability roundup is here.

 

Most Recent Threats Articles Every month, a wide range of security vulnerabilities are uncovered and disclosed — below, we take a closer look at 14 of them, all with CVSS scores of 9.8 or higher, that were disclosed in March. 1. Server Side Request Forgery Flaw in Moodle CVE identifier: CVE-2019-3809 CVSS Base Score: 10.0 The vulnerability: A flaw in the mybackpack functionality of Moodle versions 3.1 to 3.1.15 (as well as earlier unsupported versions) allowed the setting of badge URLs, enabling a Server Side Request Forgery (SSRF) attack via requests made by the page.

Source: IT Security Vulnerability Roundup – March 2019

Related Post

Why Free Browser Extensions Can Be Dangerous On a daily basis we make use of different browsers to surf the internet using our PCs and these browsers develop adds up new features especially exten...
The danger of botnet network The word "botnet" is now very widespread and almost all users know what is mean. This is not surprising because this part of a network can be virtuall...
10 tips to secure a laptop on vacation Summer comes and the bells ring for the vacations. If you have a partner or not there is one constant companion which will follow you on your vacation...
How to Report a False Positive Detection? If you are sure that the file is safe, but Gridinsoft Anti-Malware detects it as a threat, you can report a false positive. There are two kinds of su...