IT Security Vulnerability Roundup – March 2019

The Common Vulnerability Scoring System (CVSS) provides a way to capture the principal characteristics of a vulnerability and produce a numerical score reflecting its severity. Last month’s vulnerability roundup is here.

 

Most Recent Threats Articles Every month, a wide range of security vulnerabilities are uncovered and disclosed — below, we take a closer look at 14 of them, all with CVSS scores of 9.8 or higher, that were disclosed in March.   1. Server Side Request Forgery Flaw in Moodle CVE identifier: CVE-2019-3809 CVSS Base Score: 10.0 The vulnerability: A flaw in the mybackpack functionality of Moodle versions 3.1 to 3.1.15 (as well as earlier unsupported versions) allowed the setting of badge URLs, enabling a Server Side Request Forgery (SSRF) attack via requests made by the page.

Source: IT Security Vulnerability Roundup – March 2019

Related Post

What Is PWS Threat And How Dangerous Is It? The PWS stands for "Password Stealer". It is primarily associated with stealing account log-in details. Some Trojan-PWS works by spying on an individu...
COIN-MINER INVESTIGATION: WHEN, WHY, WHAT FOR Article guidePart 1.Mining malware gains its popularityPart 2.CoinMiner wanna be WannaCryPart 3.Mining software bundled with y...
The danger of botnet network The word "botnet" is now very widespread and almost all users know what is mean. This is not surprising because this part of a network can be virtuall...
Google Helps Police Identify Devices Close to Crim... A function that's hidden away on your Google account could be tracking your every move if you haven't turned it off.Location History is a list...