Blackboard Learn 1.10.1 allows remote authenticated users to read unintended files by entering student credentials and then directly visiting a certain webapps/bbcms/execute/ URL. Note: The vendor disputes this stating this cannot be reproduced.
References
Link | Resource |
---|---|
https://github.com/DayiliWaseem/CVE-2022-39196- | Exploit Third Party Advisory |
https://github.com/DayiliWaseem/CVE-2022-39196- | Exploit Third Party Advisory |
Configurations
History
21 Nov 2024, 07:17
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/DayiliWaseem/CVE-2022-39196- - Exploit, Third Party Advisory |
06 May 2024, 22:15
Type | Values Removed | Values Added |
---|---|---|
Summary | (en) Blackboard Learn 1.10.1 allows remote authenticated users to read unintended files by entering student credentials and then directly visiting a certain webapps/bbcms/execute/ URL. Note: The vendor disputes this stating this cannot be reproduced. |
08 Aug 2023, 14:22
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-noinfo |
09 Sep 2022, 12:21
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://github.com/DayiliWaseem/CVE-2022-39196- - Exploit, Third Party Advisory | |
CPE | cpe:2.3:a:blackboard:blackboard_learn:1.10.1:*:*:*:*:*:*:* | |
CWE | CWE-863 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
05 Sep 2022, 03:17
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-09-05 00:15
Updated : 2024-11-21 07:17
NVD link : CVE-2022-39196
Mitre link : CVE-2022-39196
CVE.ORG link : CVE-2022-39196
JSON object : View
Products Affected
blackboard
- blackboard_learn
CWE