Vulnerability Description
ATutor versions 2.2.1 and earlier are vulnerable to an incorrect access control check vulnerability in the Social Application component resulting in privilege escalation. ATutor versions 2.2.1 and earlier are vulnerable to an incorrect access control check vulnerability in the Module component resulting in privilege escalation. ATutor versions 2.2.1 and earlier are vulnerable to a incorrect access control check vulnerability in the Alternative Content component resulting in privilege escalation.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Atutor | Atutor | <= 2.2.1 |
Related Weaknesses (CWE)
References
- http://www.atutor.ca/atutor/mantis/changelog_page.php?version_id=55Broken Link
- http://www.atutor.ca/atutor/mantis/view.php?id=5681Broken Link
- http://www.securityfocus.com/bid/99599Third Party AdvisoryVDB Entry
- http://www.atutor.ca/atutor/mantis/changelog_page.php?version_id=55Broken Link
- http://www.atutor.ca/atutor/mantis/view.php?id=5681Broken Link
- http://www.securityfocus.com/bid/99599Third Party AdvisoryVDB Entry
FAQ
What is CVE-2017-1000003?
CVE-2017-1000003 is a vulnerability with a CVSS score of 9.8 (CRITICAL). ATutor versions 2.2.1 and earlier are vulnerable to an incorrect access control check vulnerability in the Social Application component resulting in privilege escalation. ATutor versions 2.2.1 and ear...
How severe is CVE-2017-1000003?
CVE-2017-1000003 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2017-1000003?
Check the references section above for vendor advisories and patch information. Affected products include: Atutor Atutor.