Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2026-26047

Опубликовано: 21 фев. 2026
Источник: nvd
CVSS3: 6.5
EPSS Низкий

Описание

A denial-of-service vulnerability was identified in Moodle’s TeX formula editor. When rendering TeX content using mimetex, insufficient execution time limits could allow specially crafted formulas to consume excessive server resources. An authenticated user could abuse this behavior to degrade performance or cause service interruption.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*
Версия до 4.5.9 (исключая)
cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*
Версия от 5.0.0 (включая) до 5.0.5 (исключая)
cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*
Версия от 5.1.0 (включая) до 5.1.2 (исключая)

EPSS

Процентиль: 20%
0.00066
Низкий

6.5 Medium

CVSS3

Дефекты

CWE-400
CWE-770

Связанные уязвимости

ubuntu логотип

CVE-2026-26047

CVSS3: 6.5
ubuntu
около 1 месяца назад

A denial-of-service vulnerability was identified in Moodle’s TeX formula editor. When rendering TeX content using mimetex, insufficient execution time limits could allow specially crafted formulas to consume excessive server resources. An authenticated user could abuse this behavior to degrade performance or cause service interruption.

debian логотип

CVE-2026-26047

CVSS3: 6.5
debian
около 1 месяца назад

A denial-of-service vulnerability was identified in Moodle\u2019s TeX ...

github логотип

GHSA-cg8j-5cr2-568q

CVSS3: 6.5
github
около 1 месяца назад

Moodle TeX formula editor is vulnerable to DoS through lack of execution time limits

EPSS

Процентиль: 20%
0.00066
Низкий

6.5 Medium

CVSS3

Дефекты

CWE-400
CWE-770