CVE-2024-38277

Опубликовано: 18 июн. 2024

Источник: debian

EPSS Низкий

Описание

A unique key should be generated for a user's QR login key and their auto-login key, so the same key cannot be used interchangeably between the two.

Пакет	Статус	Версия исправления	Релиз	Тип
moodle	removed			package

EPSS

Процентиль: 33%

0.00125

Низкий

CVE-2024-38277

CVSS3: 5.4

ubuntu

около 1 года назад

A unique key should be generated for a user's QR login key and their auto-login key, so the same key cannot be used interchangeably between the two.

CVE-2024-38277

CVSS3: 5.4

nvd

около 1 года назад

A unique key should be generated for a user's QR login key and their auto-login key, so the same key cannot be used interchangeably between the two.

GHSA-r82w-3phg-qvr4

CVSS3: 6.5

github

около 1 года назад

Moodle uses the same key for QR login and auto-login

EPSS

Процентиль: 33%

0.00125

Низкий