Blackboard Learn 1.10.1 allows remote authenticated users to read unintended files by entering student credentials and then directly visiting a certain webapps/bbcms/execute/ URL. Note: The vendor disputes this stating this cannot be reproduced.
References
Link | Resource |
---|---|
https://github.com/DayiliWaseem/CVE-2022-39196- | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-09-04T00:00:00
Updated: 2024-05-06T22:03:42.261465
Reserved: 2022-09-02T00:00:00
Link: CVE-2022-39196
JSON object: View
NVD Information
Status : Modified
Published: 2022-09-05T00:15:09.023
Modified: 2024-05-17T02:12:33.643
Link: CVE-2022-39196
JSON object: View
Redhat Information
No data.
CWE