VulnerableCode Vulnerability Details - VCID-1vu5-s3hu-1kc2

Search for vulnerabilities

Vulnerability details: VCID-1vu5-s3hu-1kc2

Essentials
Severities (13)
References (12)
Severity details (11)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-1vu5-s3hu-1kc2
Aliases	CVE-2014-7847 GHSA-6vjg-2q57-rgfw
Summary	Moodle allows attackers to cause a denial of service iplookup/index.php in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 allows remote attackers to cause a denial of service (resource consumption) by triggering the calculation of an estimated latitude and longitude for an IP address.
Status	Published
Exploitability	0.5
Weighted Severity	6.2
Risk	3.1
Affected and Fixed Packages	Package Details

Weaknesses (3)

CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-399	Resource Management Errors
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
generic_textual	MODERATE	http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-47321
generic_textual	MODERATE	http://openwall.com/lists/oss-security/2014/11/17/11
epss	0.00734	https://api.first.org/data/v1/epss?cve=CVE-2014-7847
epss	0.00734	https://api.first.org/data/v1/epss?cve=CVE-2014-7847
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-6vjg-2q57-rgfw
generic_textual	MODERATE	https://github.com/moodle/moodle
generic_textual	MODERATE	https://github.com/moodle/moodle/commit/324b018bbce2f56198fe8808968bad6c8798710a
generic_textual	MODERATE	https://github.com/moodle/moodle/commit/35a60cbb382d78ddb9d54c772816db4c5007ca7e
generic_textual	MODERATE	https://github.com/moodle/moodle/commit/6ec47a64acf8576916c20dcbb436b0ae41a63440
generic_textual	MODERATE	https://github.com/moodle/moodle/commit/eb46bf2f4e80f4421255f6aee00b73448ba582a7
generic_textual	MODERATE	https://moodle.org/mod/forum/discuss.php?d=275158
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2014-7847
generic_textual	MODERATE	https://web.archive.org/web/20150914064838/http://www.securitytracker.com/id/1031215

Reference id	Reference type	URL
		http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-47321
		http://openwall.com/lists/oss-security/2014/11/17/11
		https://api.first.org/data/v1/epss?cve=CVE-2014-7847
		https://github.com/moodle/moodle
		https://github.com/moodle/moodle/commit/324b018bbce2f56198fe8808968bad6c8798710a
		https://github.com/moodle/moodle/commit/35a60cbb382d78ddb9d54c772816db4c5007ca7e
		https://github.com/moodle/moodle/commit/6ec47a64acf8576916c20dcbb436b0ae41a63440
		https://github.com/moodle/moodle/commit/eb46bf2f4e80f4421255f6aee00b73448ba582a7
		https://moodle.org/mod/forum/discuss.php?d=275158
		https://nvd.nist.gov/vuln/detail/CVE-2014-7847
		https://web.archive.org/web/20150914064838/http://www.securitytracker.com/id/1031215
GHSA-6vjg-2q57-rgfw		https://github.com/advisories/GHSA-6vjg-2q57-rgfw

No exploits are available.

Exploit Prediction Scoring System (EPSS)

Percentile	0.71768
EPSS Score	0.00734
Published At	June 30, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-01T12:27:52.347562+00:00	GithubOSV Importer	Import	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-6vjg-2q57-rgfw/GHSA-6vjg-2q57-rgfw.json	36.1.3