CVE-2024-43431

Опубликовано: 07 нояб. 2024

Источник: debian

EPSS Низкий

Описание

A vulnerability was found in Moodle. Insufficient capability checks made it possible to delete badges that a user does not have permission to access.

Пакет	Статус	Версия исправления	Релиз	Тип
moodle	removed			package

EPSS

Процентиль: 51%

0.00283

Низкий

CVE-2024-43431

CVSS3: 7.5

ubuntu

12 месяцев назад

A vulnerability was found in Moodle. Insufficient capability checks made it possible to delete badges that a user does not have permission to access.

CVE-2024-43431

CVSS3: 7.5

nvd

12 месяцев назад

A vulnerability was found in Moodle. Insufficient capability checks made it possible to delete badges that a user does not have permission to access.

GHSA-wwjf-gwrv-wh45

CVSS3: 7.5

github

12 месяцев назад

Moodle's IDOR in badges allows deletion of arbitrary badges

BDU:2024-09425

CVSS3: 7.5

fstec

около 1 года назад

Уязвимость виртуальной обучающей среды Moodle, связанная с отсутствием авторизации, позволяющая нарушителю удалить данные

ROS-20241121-05

CVSS3: 8.8

redos

12 месяцев назад

Множественные уязвимости moodle

EPSS

Процентиль: 51%

0.00283

Низкий