RubyGems package
Autolab
pkg:gem/Autolab
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-49376 | — | >= 3.0.0, < 3.0.1 | 3.0.1 | Oct 25, 2024 | Autolab, a course management service that enables auto-graded programming assignments, has misconfigured reset password permissions in version 3.0.0. For email-based accounts, users with insufficient privileges could reset and theoretically access privileged users' accounts by re |
- CVE-2024-49376Oct 25, 2024affected >= 3.0.0, < 3.0.1fixed 3.0.1
Autolab, a course management service that enables auto-graded programming assignments, has misconfigured reset password permissions in version 3.0.0. For email-based accounts, users with insufficient privileges could reset and theoretically access privileged users' accounts by re