Vulnerability-Lookup

CVE-2024-43425 (GCVE-0-2024-43425)

Vulnerability from cvelistv5 – Published: 2024-11-07 13:21 – Updated: 2024-11-07 14:45

Title

Moodle: remote code execution via calculated question types

Summary

A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions.

Severity

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Assigner

fedora

References

2 references

URL	Tags
https://bugzilla.redhat.com/show_bug.cgi?id=2304253	issue-trackingx_refsource_REDHAT
https://moodle.org/mod/forum/discuss.php?d=461193

Impacted products

1 product

Vendor	Product	Version
		Affected: 0 , < 4.1.12 (semver) Affected: 4.2 , < 4.2.9 (semver) Affected: 4.3 , < 4.3.6 (semver) Affected: 4.4 , < 4.4.2 (semver)

Date Public

2024-08-19 04:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "moodle",
            "vendor": "moodle",
            "versions": [
              {
                "lessThan": "4.1.12",
                "status": "affected",
                "version": "0",
                "versionType": "semver"
              },
              {
                "lessThan": "4.2.9",
                "status": "affected",
                "version": "4.2",
                "versionType": "semver"
              },
              {
                "lessThan": "4.3.6",
                "status": "affected",
                "version": "4.3",
                "versionType": "semver"
              },
              {
                "lessThan": "4.4.2",
                "status": "affected",
                "version": "4.4",
                "versionType": "semver"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-43425",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-11-07T14:41:20.305328Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-94",
                "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-07T14:45:17.071Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://github.com/moodle/moodle",
          "defaultStatus": "unaffected",
          "packageName": "moodle",
          "versions": [
            {
              "lessThan": "4.1.12",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "4.2.9",
              "status": "affected",
              "version": "4.2",
              "versionType": "semver"
            },
            {
              "lessThan": "4.3.6",
              "status": "affected",
              "version": "4.3",
              "versionType": "semver"
            },
            {
              "lessThan": "4.4.2",
              "status": "affected",
              "version": "4.4",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2024-08-19T04:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Important"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-11-07T13:21:59.014Z",
        "orgId": "92fb86c3-55a5-4fb5-9c3f-4757b9e96dc5",
        "shortName": "fedora"
      },
      "references": [
        {
          "name": "RHBZ#2304253",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304253"
        },
        {
          "url": "https://moodle.org/mod/forum/discuss.php?d=461193"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2024-08-12T00:00:00.000Z",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2024-08-19T04:00:00.000Z",
          "value": "Made public."
        }
      ],
      "title": "Moodle: remote code execution via calculated question types"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "92fb86c3-55a5-4fb5-9c3f-4757b9e96dc5",
    "assignerShortName": "fedora",
    "cveId": "CVE-2024-43425",
    "datePublished": "2024-11-07T13:21:59.014Z",
    "dateReserved": "2024-08-13T07:15:00.597Z",
    "dateUpdated": "2024-11-07T14:45:17.071Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2024-43425",
      "date": "2026-05-29",
      "epss": "0.89291",
      "percentile": "0.99555"
    },
    "fkie_nvd": {
      "descriptions": "[{\"lang\": \"en\", \"value\": \"A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions.\"}, {\"lang\": \"es\", \"value\": \"Se encontr\\u00f3 una falla en Moodle. Se requieren restricciones adicionales para evitar el riesgo de ejecuci\\u00f3n remota de c\\u00f3digo en los tipos de preguntas calculadas. Nota: Esto requiere la capacidad de agregar o actualizar preguntas.\"}]",
      "id": "CVE-2024-43425",
      "lastModified": "2024-11-08T19:01:03.880",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"patrick@puiterwijk.org\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 8.1, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.2, \"impactScore\": 5.9}]}",
      "published": "2024-11-07T14:15:15.280",
      "references": "[{\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2304253\", \"source\": \"patrick@puiterwijk.org\"}, {\"url\": \"https://moodle.org/mod/forum/discuss.php?d=461193\", \"source\": \"patrick@puiterwijk.org\"}]",
      "sourceIdentifier": "patrick@puiterwijk.org",
      "vulnStatus": "Awaiting Analysis",
      "weaknesses": "[{\"source\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-94\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-43425\",\"sourceIdentifier\":\"patrick@puiterwijk.org\",\"published\":\"2024-11-07T14:15:15.280\",\"lastModified\":\"2025-05-01T16:01:21.307\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 una falla en Moodle. Se requieren restricciones adicionales para evitar el riesgo de ejecuci\u00f3n remota de c\u00f3digo en los tipos de preguntas calculadas. Nota: Esto requiere la capacidad de agregar o actualizar preguntas.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"patrick@puiterwijk.org\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":5.9},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.1.12\",\"matchCriteriaId\":\"E5532931-0BD7-4522-9641-F0455BB030D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2.0\",\"versionEndExcluding\":\"4.2.9\",\"matchCriteriaId\":\"B8D123FB-556C-4602-91CB-ABE6541079F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.3.0\",\"versionEndExcluding\":\"4.3.6\",\"matchCriteriaId\":\"FBA8C381-9493-42BD-A5EA-7AADFAB68C5E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.4.0\",\"versionEndExcluding\":\"4.4.2\",\"matchCriteriaId\":\"277E1058-2F00-45DB-8BFC-2628CCC89981\"}]}]}],\"references\":[{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2304253\",\"source\":\"patrick@puiterwijk.org\",\"tags\":[\"Permissions Required\"]},{\"url\":\"https://moodle.org/mod/forum/discuss.php?d=461193\",\"source\":\"patrick@puiterwijk.org\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-43425\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-07T14:41:20.305328Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*\"], \"vendor\": \"moodle\", \"product\": \"moodle\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"4.1.12\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"4.2\", \"lessThan\": \"4.2.9\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"4.3\", \"lessThan\": \"4.3.6\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"4.4\", \"lessThan\": \"4.4.2\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unknown\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-94\", \"description\": \"CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-07T14:43:08.256Z\"}}], \"cna\": {\"title\": \"Moodle: remote code execution via calculated question types\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8.1, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"4.1.12\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"4.2\", \"lessThan\": \"4.2.9\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"4.3\", \"lessThan\": \"4.3.6\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"4.4\", \"lessThan\": \"4.4.2\", \"versionType\": \"semver\"}], \"packageName\": \"moodle\", \"collectionURL\": \"https://github.com/moodle/moodle\", \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2024-08-12T00:00:00.000Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2024-08-19T04:00:00.000Z\", \"value\": \"Made public.\"}], \"datePublic\": \"2024-08-19T04:00:00.000Z\", \"references\": [{\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2304253\", \"name\": \"RHBZ#2304253\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://moodle.org/mod/forum/discuss.php?d=461193\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions.\"}], \"providerMetadata\": {\"orgId\": \"92fb86c3-55a5-4fb5-9c3f-4757b9e96dc5\", \"shortName\": \"fedora\", \"dateUpdated\": \"2024-11-07T13:21:59.014Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-43425\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-11-07T14:45:17.071Z\", \"dateReserved\": \"2024-08-13T07:15:00.597Z\", \"assignerOrgId\": \"92fb86c3-55a5-4fb5-9c3f-4757b9e96dc5\", \"datePublished\": \"2024-11-07T13:21:59.014Z\", \"assignerShortName\": \"fedora\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

CERTFR-2024-AVI-0696

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans Moodle. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une atteinte à la confidentialité des données et une atteinte à l'intégrité des données.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Moodle	N/A	Moodle versions antérieures à 4.1.12
Moodle	N/A	Moodle versions 4.3.x antérieures à 4.3.6
Moodle	N/A	Moodle versions 4.4.x antérieures à 4.4.2
Moodle	N/A	Moodle versions 4.2.x antérieures à 4.2.9

References

Title

Publication Time

CERTFR-2024-AVI-0696

Vulnerability from certfr_avis - Published: - Updated:

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Moodle	N/A	Moodle versions antérieures à 4.1.12
Moodle	N/A	Moodle versions 4.3.x antérieures à 4.3.6
Moodle	N/A	Moodle versions 4.4.x antérieures à 4.4.2
Moodle	N/A	Moodle versions 4.2.x antérieures à 4.2.9

References

Title

Publication Time

BDU:2024-06552

Vulnerability from fstec - Published: 27.08.2024

Title

Уязвимость виртуальной обучающей среды Moodle, существующая из-за непринятия мер по защите структуры веб-страницы, позволяющая нарушителю выполнить произвольный код

Description

Уязвимость виртуальной обучающей среды Moodle существует из-за непринятия мер по защите структуры веб-страницы. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, выполнить произвольный код путём создания специально сформированного запроса

Severity


                    
                      AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Vendor

ООО «Ред Софт», Мартин Дугамас

Software Name

РЕД ОС (запись в едином реестре российских программ №3751), Moodle

Software Version

7.3 (РЕД ОС), до 4.1.12 (Moodle), от 4.2.0 до 4.2.9 (Moodle), от 4.3.0 до 4.3.6 (Moodle), от 4.4.0 до 4.4.2 (Moodle)

Possible Mitigations

Установка обновлений из доверенных источников. В связи со сложившейся обстановкой и введенными санкциями против Российской Федерации рекомендуется устанавливать обновления программного обеспечения только после оценки всех сопутствующих рисков. Компенсирующие меры: - использование антивирусного программного обеспечения для отслеживания средств эксплуатации уязвимости; - минимизация пользовательских привилегий; - отключение/удаление неиспользуемых учётных записей пользователей. Использование рекомендаций производителя: https://download.moodle.org/ Для РедОС: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/

Reference

https://blog.redteam-pentesting.de/2024/moodle-rce/ https://github.com/RedTeamPentesting/moodle-rce-calculatedquestions https://www.cybersecurity-help.cz/vdb/SB2024082033 https://download.moodle.org/ http://repo.red-soft.ru/redos/7.3c/x86_64/updates/

CWE

CWE-94

JSON

To clipboard

{
  "CVSS 2.0": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
  "CVSS 3.0": "AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb, \u041c\u0430\u0440\u0442\u0438\u043d \u0414\u0443\u0433\u0430\u043c\u0430\u0441",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "7.3 (\u0420\u0415\u0414 \u041e\u0421), \u0434\u043e 4.1.12 (Moodle), \u043e\u0442 4.2.0 \u0434\u043e 4.2.9 (Moodle), \u043e\u0442 4.3.0 \u0434\u043e 4.3.6 (Moodle), \u043e\u0442 4.4.0 \u0434\u043e 4.4.2 (Moodle)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0438\u0437 \u0434\u043e\u0432\u0435\u0440\u0435\u043d\u043d\u044b\u0445 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u043e\u0432.\n\u0412 \u0441\u0432\u044f\u0437\u0438 \u0441\u043e \u0441\u043b\u043e\u0436\u0438\u0432\u0448\u0435\u0439\u0441\u044f \u043e\u0431\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u043e\u0439 \u0438 \u0432\u0432\u0435\u0434\u0435\u043d\u043d\u044b\u043c\u0438 \u0441\u0430\u043d\u043a\u0446\u0438\u044f\u043c\u0438 \u043f\u0440\u043e\u0442\u0438\u0432 \u0420\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u043e\u0439 \u0424\u0435\u0434\u0435\u0440\u0430\u0446\u0438\u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0442\u043e\u043b\u044c\u043a\u043e \u043f\u043e\u0441\u043b\u0435 \u043e\u0446\u0435\u043d\u043a\u0438 \u0432\u0441\u0435\u0445 \u0441\u043e\u043f\u0443\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0445 \u0440\u0438\u0441\u043a\u043e\u0432.\n\n\u041a\u043e\u043c\u043f\u0435\u043d\u0441\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u043c\u0435\u0440\u044b:\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0430\u043d\u0442\u0438\u0432\u0438\u0440\u0443\u0441\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u043d\u0438\u044f \u0441\u0440\u0435\u0434\u0441\u0442\u0432 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438;\n- \u043c\u0438\u043d\u0438\u043c\u0438\u0437\u0430\u0446\u0438\u044f \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c\u0441\u043a\u0438\u0445 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439;\n- \u043e\u0442\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0435/\u0443\u0434\u0430\u043b\u0435\u043d\u0438\u0435 \u043d\u0435\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u044b\u0445 \u0443\u0447\u0451\u0442\u043d\u044b\u0445 \u0437\u0430\u043f\u0438\u0441\u0435\u0439 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439.\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://download.moodle.org/\n\n\n\n\u0414\u043b\u044f \u0420\u0435\u0434\u041e\u0421: \n\nhttp://repo.red-soft.ru/redos/7.3c/x86_64/updates/",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "27.08.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "25.11.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "30.08.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-06552",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-43425",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "\u0420\u0415\u0414 \u041e\u0421 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Moodle",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb \u0420\u0415\u0414 \u041e\u0421 7.3  (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751)",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043e\u0431\u0443\u0447\u0430\u044e\u0449\u0435\u0439 \u0441\u0440\u0435\u0434\u044b Moodle, \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0449\u0430\u044f \u0438\u0437-\u0437\u0430 \u043d\u0435\u043f\u0440\u0438\u043d\u044f\u0442\u0438\u044f \u043c\u0435\u0440 \u043f\u043e \u0437\u0430\u0449\u0438\u0442\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u0432\u0435\u0431-\u0441\u0442\u0440\u0430\u043d\u0438\u0446\u044b, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0421\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0432 \u043e\u0442\u043a\u0440\u044b\u0442\u043e\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u0435",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0432\u0435\u0440\u043d\u043e\u0435 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0433\u0435\u043d\u0435\u0440\u0430\u0446\u0438\u0435\u0439 \u043a\u043e\u0434\u0430 (\u0412\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u0435 \u043a\u043e\u0434\u0430) (CWE-94)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043e\u0431\u0443\u0447\u0430\u044e\u0449\u0435\u0439 \u0441\u0440\u0435\u0434\u044b Moodle \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0438\u0437-\u0437\u0430 \u043d\u0435\u043f\u0440\u0438\u043d\u044f\u0442\u0438\u044f \u043c\u0435\u0440 \u043f\u043e \u0437\u0430\u0449\u0438\u0442\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u0432\u0435\u0431-\u0441\u0442\u0440\u0430\u043d\u0438\u0446\u044b. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u043f\u0443\u0442\u0451\u043c \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u044f \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0433\u043e \u0437\u0430\u043f\u0440\u043e\u0441\u0430",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u0418\u043d\u044a\u0435\u043a\u0446\u0438\u044f",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://blog.redteam-pentesting.de/2024/moodle-rce/\nhttps://github.com/RedTeamPentesting/moodle-rce-calculatedquestions\nhttps://www.cybersecurity-help.cz/vdb/SB2024082033\nhttps://download.moodle.org/\n\nhttp://repo.red-soft.ru/redos/7.3c/x86_64/updates/",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-94",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 9)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 8,8)"
}

bit-moodle-2024-43425

Vulnerability from bitnami_vulndb

Published

2025-05-02 06:18

Modified

2025-05-20 10:02

Summary

Moodle: remote code execution via calculated question types

Details

A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions.

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Bitnami",
        "name": "moodle",
        "purl": "pkg:bitnami/moodle"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "4.1.12"
            },
            {
              "introduced": "4.2.0"
            },
            {
              "fixed": "4.2.9"
            },
            {
              "introduced": "4.3.0"
            },
            {
              "fixed": "4.3.6"
            },
            {
              "introduced": "4.4.0"
            },
            {
              "fixed": "4.4.2"
            }
          ],
          "type": "SEMVER"
        }
      ],
      "severity": [
        {
          "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "type": "CVSS_V3"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2024-43425"
  ],
  "database_specific": {
    "cpes": [
      "cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*"
    ],
    "severity": "High"
  },
  "details": "A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions.",
  "id": "BIT-moodle-2024-43425",
  "modified": "2025-05-20T10:02:07.006Z",
  "published": "2025-05-02T06:18:44.557Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304253"
    },
    {
      "type": "WEB",
      "url": "https://moodle.org/mod/forum/discuss.php?d=461193"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43425"
    }
  ],
  "schema_version": "1.6.2",
  "summary": "Moodle: remote code execution via calculated question types"
}

FKIE_CVE-2024-43425

Vulnerability from fkie_nvd - Published: 2024-11-07 14:15 - Updated: 2025-05-01 16:01

Severity

8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions.

References

	URL	Tags
	patrick@puiterwijk.org	https://bugzilla.redhat.com/show_bug.cgi?id=2304253	Permissions Required
	patrick@puiterwijk.org	https://moodle.org/mod/forum/discuss.php?d=461193	Vendor Advisory

Impacted products

Vendor	Product	Version
moodle	moodle	*
moodle	moodle	*
moodle	moodle	*
moodle	moodle	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E5532931-0BD7-4522-9641-F0455BB030D8",
              "versionEndExcluding": "4.1.12",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B8D123FB-556C-4602-91CB-ABE6541079F3",
              "versionEndExcluding": "4.2.9",
              "versionStartIncluding": "4.2.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "FBA8C381-9493-42BD-A5EA-7AADFAB68C5E",
              "versionEndExcluding": "4.3.6",
              "versionStartIncluding": "4.3.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "277E1058-2F00-45DB-8BFC-2628CCC89981",
              "versionEndExcluding": "4.4.2",
              "versionStartIncluding": "4.4.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions."
    },
    {
      "lang": "es",
      "value": "Se encontr\u00f3 una falla en Moodle. Se requieren restricciones adicionales para evitar el riesgo de ejecuci\u00f3n remota de c\u00f3digo en los tipos de preguntas calculadas. Nota: Esto requiere la capacidad de agregar o actualizar preguntas."
    }
  ],
  "id": "CVE-2024-43425",
  "lastModified": "2025-05-01T16:01:21.307",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 5.9,
        "source": "patrick@puiterwijk.org",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-11-07T14:15:15.280",
  "references": [
    {
      "source": "patrick@puiterwijk.org",
      "tags": [
        "Permissions Required"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304253"
    },
    {
      "source": "patrick@puiterwijk.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://moodle.org/mod/forum/discuss.php?d=461193"
    }
  ],
  "sourceIdentifier": "patrick@puiterwijk.org",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-94"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}

GHSA-V6F4-V8H8-3C87

Vulnerability from github – Published: 2024-11-07 15:31 – Updated: 2024-11-07 19:27

Summary

Moodle Remote Code Execution vulnerability

Details

A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions.

Severity

8.1 (High)


                  
                    CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

7.2 (High)


                  
                    CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "moodle/moodle"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "4.1.12"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "moodle/moodle"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "4.2.0-beta"
            },
            {
              "fixed": "4.2.9"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "moodle/moodle"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "4.3.0-beta"
            },
            {
              "fixed": "4.3.6"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "moodle/moodle"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "4.4.0-beta"
            },
            {
              "fixed": "4.4.2"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2024-43425"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-94"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2024-11-07T18:15:23Z",
    "nvd_published_at": "2024-11-07T14:15:15Z",
    "severity": "HIGH"
  },
  "details": "A flaw was found in Moodle. Additional restrictions are required to avoid a remote code execution risk in calculated question types. Note: This requires the capability to add/update questions.",
  "id": "GHSA-v6f4-v8h8-3c87",
  "modified": "2024-11-07T19:27:17Z",
  "published": "2024-11-07T15:31:52Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43425"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304253"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/moodle/moodle"
    },
    {
      "type": "WEB",
      "url": "https://moodle.org/mod/forum/discuss.php?d=461193"
    },
    {
      "type": "WEB",
      "url": "http://git.moodle.org/gw?p=moodle.git\u0026a=search\u0026h=HEAD\u0026st=commit\u0026s=MDL-82576"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U",
      "type": "CVSS_V4"
    }
  ],
  "summary": "Moodle Remote Code Execution vulnerability"
}

WID-SEC-W-2024-1877

Vulnerability from csaf_certbund - Published: 2024-08-18 22:00 - Updated: 2024-08-28 22:00

Summary

Moodle: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Moodle ist ein Software-Paket, um internetbasierte Kurse zu entwickeln und durchzuführen. Es ist ein globales Softwareentwicklungsprojekt, das einen konstruktivistischen Lehr- und Lernansatz unterstützt.

Angriff: Ein entfernter Angreifer kann mehrere Schwachstellen in Moodle ausnutzen, um Code auszuführen, bestimmte administrative Aufgaben durchzuführen, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuführen und eine nicht näher spezifizierte Wirkung zu erzielen.

Betroffene Betriebssysteme: - Linux - UNIX - Windows

CVE-2024-43425

Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zurückzuführen sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuführen, bestimmte administrative Aufgaben durchzuführen, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuführen und eine nicht näher spezifizierte Wirkung zu erzielen.

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43426

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43427

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43428

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43429

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43430

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43431

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43432

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43433

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43434

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43435

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43436

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43437

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43438

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43439

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

CVE-2024-43440

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.2 Open Source / Moodle		<4.4.2
Open Source Moodle <4.3.6 Open Source / Moodle		<4.3.6
Open Source Moodle <4.2.9 Open Source / Moodle		<4.2.9
Open Source Moodle <4.1.12 Open Source / Moodle		<4.1.12

References

20 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://moodle.org/mod/forum/view.php?id=7128	external
https://moodle.org/mod/forum/discuss.php?d=461193	external
https://moodle.org/mod/forum/discuss.php?d=461194	external
https://moodle.org/mod/forum/discuss.php?d=461195	external
https://moodle.org/mod/forum/discuss.php?d=461196	external
https://moodle.org/mod/forum/discuss.php?d=461197	external
https://moodle.org/mod/forum/discuss.php?d=461198	external
https://moodle.org/mod/forum/discuss.php?d=461199	external
https://moodle.org/mod/forum/discuss.php?d=461200	external
https://moodle.org/mod/forum/discuss.php?d=461202	external
https://moodle.org/mod/forum/discuss.php?d=461203	external
https://moodle.org/mod/forum/discuss.php?d=461205	external
https://moodle.org/mod/forum/discuss.php?d=461206	external
https://moodle.org/mod/forum/discuss.php?d=461207	external
https://moodle.org/mod/forum/discuss.php?d=461208	external
https://moodle.org/mod/forum/discuss.php?d=461209	external
https://moodle.org/mod/forum/discuss.php?d=461210	external
https://blog.redteam-pentesting.de/2024/moodle-rce/	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Moodle ist ein Software-Paket, um internetbasierte Kurse zu entwickeln und durchzuf\u00fchren. Es ist ein globales Softwareentwicklungsprojekt, das einen konstruktivistischen Lehr- und Lernansatz unterst\u00fctzt.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter Angreifer kann mehrere Schwachstellen in Moodle ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1877 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1877.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1877 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1877"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcements vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/view.php?id=7128"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0026 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461193"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0027 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461194"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0028 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461195"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0029 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461196"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0030 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461197"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0031 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461198"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0032 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461199"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0033 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461200"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0034 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461202"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0035 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461203"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0036 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461205"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0037 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461206"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0038 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461207"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0039 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461208"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0040 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461209"
      },
      {
        "category": "external",
        "summary": "Moodle Security Announcement MSA-24-0041 vom 2024-08-19",
        "url": "https://moodle.org/mod/forum/discuss.php?d=461210"
      },
      {
        "category": "external",
        "summary": "PoC CVE-2024-43425 vom 2024-08-28",
        "url": "https://blog.redteam-pentesting.de/2024/moodle-rce/"
      }
    ],
    "source_lang": "en-US",
    "title": "Moodle: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-08-28T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-29T12:38:16.603+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.6"
        }
      },
      "id": "WID-SEC-W-2024-1877",
      "initial_release_date": "2024-08-18T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-08-18T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-08-28T22:00:00.000+00:00",
          "number": "2",
          "summary": "PoC f\u00fcr CVE-2024-43425 aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c4.4.2",
                "product": {
                  "name": "Open Source Moodle \u003c4.4.2",
                  "product_id": "T036947"
                }
              },
              {
                "category": "product_version",
                "name": "4.4.2",
                "product": {
                  "name": "Open Source Moodle 4.4.2",
                  "product_id": "T036947-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:open_source:moodle:4.4.2"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c4.3.6",
                "product": {
                  "name": "Open Source Moodle \u003c4.3.6",
                  "product_id": "T036948"
                }
              },
              {
                "category": "product_version",
                "name": "4.3.6",
                "product": {
                  "name": "Open Source Moodle 4.3.6",
                  "product_id": "T036948-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:open_source:moodle:4.3.6"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c4.2.9",
                "product": {
                  "name": "Open Source Moodle \u003c4.2.9",
                  "product_id": "T036949"
                }
              },
              {
                "category": "product_version",
                "name": "4.2.9",
                "product": {
                  "name": "Open Source Moodle 4.2.9",
                  "product_id": "T036949-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:open_source:moodle:4.2.9"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c4.1.12",
                "product": {
                  "name": "Open Source Moodle \u003c4.1.12",
                  "product_id": "T036950"
                }
              },
              {
                "category": "product_version",
                "name": "4.1.12",
                "product": {
                  "name": "Open Source Moodle 4.1.12",
                  "product_id": "T036950-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:open_source:moodle:4.1.12"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Moodle"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-43425",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43425"
    },
    {
      "cve": "CVE-2024-43426",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43426"
    },
    {
      "cve": "CVE-2024-43427",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43427"
    },
    {
      "cve": "CVE-2024-43428",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43428"
    },
    {
      "cve": "CVE-2024-43429",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43429"
    },
    {
      "cve": "CVE-2024-43430",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43430"
    },
    {
      "cve": "CVE-2024-43431",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43431"
    },
    {
      "cve": "CVE-2024-43432",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43432"
    },
    {
      "cve": "CVE-2024-43433",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43433"
    },
    {
      "cve": "CVE-2024-43434",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43434"
    },
    {
      "cve": "CVE-2024-43435",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43435"
    },
    {
      "cve": "CVE-2024-43436",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43436"
    },
    {
      "cve": "CVE-2024-43437",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43437"
    },
    {
      "cve": "CVE-2024-43438",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43438"
    },
    {
      "cve": "CVE-2024-43439",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43439"
    },
    {
      "cve": "CVE-2024-43440",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt mehrere Schwachstellen in verschiedenen Komponenten von Moodle, die auf unzureichende Bereinigung, fehlende Zugriffskontrollen und andere Implementierungsfehler zur\u00fcckzuf\u00fchren sind. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um Code auszuf\u00fchren, bestimmte administrative Aufgaben durchzuf\u00fchren, Informationen preiszugeben, Daten zu manipulieren, Sicherheitsmechanismen zu umgehen, Cross-Site-Scripting-Angriffe durchzuf\u00fchren und eine nicht n\u00e4her spezifizierte Wirkung zu erzielen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T036947",
          "T036948",
          "T036949",
          "T036950"
        ]
      },
      "release_date": "2024-08-18T22:00:00.000+00:00",
      "title": "CVE-2024-43440"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-43425 (GCVE-0-2024-43425)

CERTFR-2024-AVI-0696

Solutions

CERTFR-2024-AVI-0696

Solutions

BDU:2024-06552

bit-moodle-2024-43425

Vulnerability from bitnami_vulndb

FKIE_CVE-2024-43425

GHSA-V6F4-V8H8-3C87

WID-SEC-W-2024-1877

Tags

Sightings

Nomenclature