CVE-2024-25980

Опубликовано: 19 фев. 2024

Источник: debian

Описание

Separate Groups mode restrictions were not honored in the H5P attempts report, which would display users from other groups. By default this only provided additional access to non-editing teachers.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
moodle	removed			package

Связанные уязвимости

CVE-2024-25980

CVSS3: 4.3

ubuntu

больше 1 года назад

Separate Groups mode restrictions were not honored in the H5P attempts report, which would display users from other groups. By default this only provided additional access to non-editing teachers.

CVE-2024-25980

CVSS3: 4.3

nvd

больше 1 года назад

Separate Groups mode restrictions were not honored in the H5P attempts report, which would display users from other groups. By default this only provided additional access to non-editing teachers.

GHSA-cp8m-h777-g4p3

CVSS3: 5.3

github

больше 1 года назад

Improper Access Control in moodle