IT Security Vulnerability Roundup – March 2019

The Common Vulnerability Scoring System (CVSS) provides a way to capture the principal characteristics of a vulnerability and produce a numerical score reflecting its severity. Last month’s vulnerability roundup is here.

 

Most Recent Threats Articles Every month, a wide range of security vulnerabilities are uncovered and disclosed — below, we take a closer look at 14 of them, all with CVSS scores of 9.8 or higher, that were disclosed in March. 1. Server Side Request Forgery Flaw in Moodle CVE identifier: CVE-2019-3809 CVSS Base Score: 10.0 The vulnerability: A flaw in the mybackpack functionality of Moodle versions 3.1 to 3.1.15 (as well as earlier unsupported versions) allowed the setting of badge URLs, enabling a Server Side Request Forgery (SSRF) attack via requests made by the page.

Source: IT Security Vulnerability Roundup – March 2019

Related Post

5 Dangers of Cracked Software Pirated or Cracked software is easily available on the internet. It is software that has been modified to remove some of its undesirable features whic...
Watermelon Day PROMO – free licenses for eve... Get ready for the last month of summer! August 3 is a Watermelon Day. While you are very peacefully vacationing (and enjoying sweet and juicy watermel...
How to protect your PC from a virus, that has infe... I think you've already heard about this virus. For the past few days, it spread to computers in 74 counties! The biggest impact we can see is in China...
Researcher Hijacks a Microsoft Service Using Looph... When you create an app on Azure and wants to make it available on the Internet with a custom domain name, the platform asks users to point their domai...