GHSA-q99x-mjmh-v8w7

Опубликовано: 11 нояб. 2024

Источник: github

Github: Прошло ревью

CVSS4: 2.7

CVSS3: 5.3

Описание

Moodle's user/power level management inconsistent with suspended users

A flaw was found in moodle. Matrix room membership and power levels are incorrectly applied and revoked for suspended Moodle users.

Ссылки

Пакеты

Наименование

moodle/moodle

composer

Затронутые версииВерсия исправления

>= 4.4.0, < 4.4.2

4.4.2

Наименование

moodle/moodle

composer

Затронутые версииВерсия исправления

>= 4.3.0, < 4.3.6

4.3.6

EPSS

Процентиль: 27%

0.0009

Низкий

2.7 Low

CVSS4

5.3 Medium

CVSS3

CVE ID

CVE-2024-43433

Дефекты

CWE-863

Связанные уязвимости

CVE-2024-43433

CVSS3: 5.3

ubuntu

7 месяцев назад

A flaw was found in moodle. Matrix room membership and power levels are incorrectly applied and revoked for suspended Moodle users.

CVE-2024-43433

CVSS3: 5.3

nvd

7 месяцев назад

A flaw was found in moodle. Matrix room membership and power levels are incorrectly applied and revoked for suspended Moodle users.

CVE-2024-43433

CVSS3: 5.3

debian

7 месяцев назад

A flaw was found in moodle. Matrix room membership and power levels ar ...

EPSS

Процентиль: 27%

0.0009

Низкий

2.7 Low

CVSS4

5.3 Medium

CVSS3

CVE ID

CVE-2024-43433

Дефекты

CWE-863