CVE-2025-62398

Опубликовано: 23 окт. 2025

Источник: debian

EPSS Низкий

Описание

A serious authentication flaw allowed attackers with valid credentials to bypass multi-factor authentication under certain conditions, potentially compromising user accounts.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
moodle	removed			package

EPSS

Процентиль: 23%

0.00075

Низкий

Связанные уязвимости

CVE-2025-62398

CVSS3: 5.4

ubuntu

4 месяца назад

A serious authentication flaw allowed attackers with valid credentials to bypass multi-factor authentication under certain conditions, potentially compromising user accounts.

CVE-2025-62398

CVSS3: 5.4

nvd

4 месяца назад

A serious authentication flaw allowed attackers with valid credentials to bypass multi-factor authentication under certain conditions, potentially compromising user accounts.

GHSA-25wf-7x6c-wmpf

CVSS3: 5.3

github

4 месяца назад

Moodle does not properly enforce MFA

EPSS

Процентиль: 23%

0.00075

Низкий