Vulnerability-Lookup

CVE-2024-48897 (GCVE-0-2024-48897)

Vulnerability from cvelistv5 – Published: 2024-11-18 11:14 – Updated: 2024-11-19 14:52

Title

Moodle: idor in edit/delete rss feed

Summary

A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify.

Severity

No CVSS data available.

CWE

CWE-285 - Improper Authorization

Assigner

redhat

References

1 reference

URL	Tags
https://bugzilla.redhat.com/show_bug.cgi?id=2318821	issue-trackingx_refsource_REDHAT

Impacted products

1 product

Vendor	Product	Version
		Affected: 4.4.0 , < 4.4.4 (semver) Affected: 4.3.0 , < 4.3.8 (semver) Affected: 4.2.0 , < 4.2.11 (semver) Affected: 4.1.0 , < 4.1.14 (semver) Affected: 0 , < 4.1.0 (semver)

Date Public

2024-10-15 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 6.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "HIGH",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-48897",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-11-19T14:51:39.562696Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-19T14:52:32.175Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://moodle.org/",
          "defaultStatus": "unaffected",
          "packageName": "moodle",
          "versions": [
            {
              "lessThan": "4.4.4",
              "status": "affected",
              "version": "4.4.0",
              "versionType": "semver"
            },
            {
              "lessThan": "4.3.8",
              "status": "affected",
              "version": "4.3.0",
              "versionType": "semver"
            },
            {
              "lessThan": "4.2.11",
              "status": "affected",
              "version": "4.2.0",
              "versionType": "semver"
            },
            {
              "lessThan": "4.1.14",
              "status": "affected",
              "version": "4.1.0",
              "versionType": "semver"
            },
            {
              "lessThan": "4.1.0",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2024-10-15T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Moderate"
            },
            "type": "Red Hat severity rating"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-285",
              "description": "Improper Authorization",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-11-18T11:14:03.856Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "RHBZ#2318821",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2318821"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2024-10-15T17:23:15.394Z",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2024-10-15T00:00:00.000Z",
          "value": "Made public."
        }
      ],
      "title": "Moodle: idor in edit/delete rss feed",
      "x_redhatCweChain": "CWE-285: Improper Authorization"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2024-48897",
    "datePublished": "2024-11-18T11:14:03.856Z",
    "dateReserved": "2024-10-09T12:15:07.577Z",
    "dateUpdated": "2024-11-19T14:52:32.175Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2024-48897",
      "date": "2026-05-27",
      "epss": "0.00229",
      "percentile": "0.45638"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"4.1.14\", \"matchCriteriaId\": \"A2D74BD7-3907-49E1-B2FC-A45108CB5AF0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.2.0\", \"versionEndIncluding\": \"4.2.11\", \"matchCriteriaId\": \"CCE4F475-9272-4891-B690-3AB9720CD2D8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.3.0\", \"versionEndIncluding\": \"4.3.8\", \"matchCriteriaId\": \"A6A31566-F7AD-4FD4-82A6-CCE0D52123B8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.4.0\", \"versionEndIncluding\": \"4.4.4\", \"matchCriteriaId\": \"E073E9C6-D72C-4C82-92AF-6C02B81EB28B\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify.\"}, {\"lang\": \"es\", \"value\": \"Se encontr\\u00f3 una vulnerabilidad en Moodle. Se requieren verificaciones adicionales para garantizar que los usuarios solo puedan editar o eliminar los feeds RSS que tengan permiso para modificar.\"}]",
      "id": "CVE-2024-48897",
      "lastModified": "2024-11-20T14:48:25.373",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N\", \"baseScore\": 4.3, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 1.4}, {\"source\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N\", \"baseScore\": 6.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.6}]}",
      "published": "2024-11-18T12:15:18.243",
      "references": "[{\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2318821\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\"]}]",
      "sourceIdentifier": "secalert@redhat.com",
      "vulnStatus": "Analyzed",
      "weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-285\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-863\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-48897\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2024-11-18T12:15:18.243\",\"lastModified\":\"2024-11-20T14:48:25.373\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 una vulnerabilidad en Moodle. Se requieren verificaciones adicionales para garantizar que los usuarios solo puedan editar o eliminar los feeds RSS que tengan permiso para modificar.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N\",\"baseScore\":4.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":1.4},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-285\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-863\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"4.1.14\",\"matchCriteriaId\":\"A2D74BD7-3907-49E1-B2FC-A45108CB5AF0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.2.0\",\"versionEndIncluding\":\"4.2.11\",\"matchCriteriaId\":\"CCE4F475-9272-4891-B690-3AB9720CD2D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.3.0\",\"versionEndIncluding\":\"4.3.8\",\"matchCriteriaId\":\"A6A31566-F7AD-4FD4-82A6-CCE0D52123B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.4.0\",\"versionEndIncluding\":\"4.4.4\",\"matchCriteriaId\":\"E073E9C6-D72C-4C82-92AF-6C02B81EB28B\"}]}]}],\"references\":[{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2318821\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 6.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-48897\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-19T14:51:39.562696Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-19T14:52:26.558Z\"}}], \"cna\": {\"title\": \"Moodle: idor in edit/delete rss feed\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Moderate\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}], \"affected\": [{\"versions\": [{\"status\": \"affected\", \"version\": \"4.4.0\", \"lessThan\": \"4.4.4\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"4.3.0\", \"lessThan\": \"4.3.8\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"4.2.0\", \"lessThan\": \"4.2.11\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"4.1.0\", \"lessThan\": \"4.1.14\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"4.1.0\", \"versionType\": \"semver\"}], \"packageName\": \"moodle\", \"collectionURL\": \"https://moodle.org/\", \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2024-10-15T17:23:15.394000+00:00\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2024-10-15T00:00:00+00:00\", \"value\": \"Made public.\"}], \"datePublic\": \"2024-10-15T00:00:00+00:00\", \"references\": [{\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2318821\", \"name\": \"RHBZ#2318821\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-285\", \"description\": \"Improper Authorization\"}]}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2024-11-18T11:14:03.856Z\"}, \"x_redhatCweChain\": \"CWE-285: Improper Authorization\"}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-48897\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-11-19T14:52:32.175Z\", \"dateReserved\": \"2024-10-09T12:15:07.577Z\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"datePublished\": \"2024-11-18T11:14:03.856Z\", \"assignerShortName\": \"redhat\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

CERTFR-2024-AVI-0876

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans Moodle. Elles permettent à un attaquant de provoquer une atteinte à la confidentialité des données, une atteinte à l'intégrité des données et un contournement de la politique de sécurité.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Moodle	Moodle	Moodle versions 4.2.x antérieures à 4.2.11
Moodle	Moodle	Moodle versions 4.4.x antérieures à 4.4.4
Moodle	Moodle	Moodle versions 4.3.x antérieures à 4.3.8
Moodle	Moodle	Moodle versions antérieures à 4.1.14

References

Title

Publication Time

CERTFR-2024-AVI-0876

Vulnerability from certfr_avis - Published: - Updated:

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Moodle	Moodle	Moodle versions 4.2.x antérieures à 4.2.11
Moodle	Moodle	Moodle versions 4.4.x antérieures à 4.4.4
Moodle	Moodle	Moodle versions 4.3.x antérieures à 4.3.8
Moodle	Moodle	Moodle versions antérieures à 4.1.14

References

Title

Publication Time

BDU:2024-10263

Vulnerability from fstec - Published: 14.10.2024

Title

Уязвимость виртуальной обучающей среды Moodle, связанная с недостатками процедуры аутентификации, позволяющая нарушителю получить несанкционированный доступ к элементам системы

Description

Уязвимость виртуальной обучающей среды Moodle связана с недостатками процедуры аутентификации. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, получить несанкционированный доступ к элементам системы

Severity


                    
                      AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Vendor

ООО «Ред Софт», Мартин Дугамас

Software Name

РЕД ОС (запись в едином реестре российских программ №3751), Moodle

Software Version

7.3 (РЕД ОС), до 4.4 до 4.4.4 (Moodle), от 4.1 до 4.1.14 (Moodle), от 4.2 до 4.2.11 (Moodle), от 4.3 до 4.3.8 (Moodle)

Possible Mitigations

Использование рекомендаций: Для Moodle: https://moodle.org/security/ Для РедоС: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/

Reference

https://redos.red-soft.ru/support/secure/ https://moodle.org/security/

CWE

CWE-285

JSON

To clipboard

{
  "CVSS 2.0": "AV:N/AC:L/Au:S/C:N/I:C/A:N",
  "CVSS 3.0": "AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb, \u041c\u0430\u0440\u0442\u0438\u043d \u0414\u0443\u0433\u0430\u043c\u0430\u0441",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "7.3 (\u0420\u0415\u0414 \u041e\u0421), \u0434\u043e 4.4 \u0434\u043e 4.4.4 (Moodle), \u043e\u0442 4.1 \u0434\u043e 4.1.14 (Moodle), \u043e\u0442 4.2 \u0434\u043e 4.2.11 (Moodle), \u043e\u0442 4.3 \u0434\u043e 4.3.8 (Moodle)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f Moodle:\nhttps://moodle.org/security/\n\n\u0414\u043b\u044f \u0420\u0435\u0434\u043e\u0421: \nhttp://repo.red-soft.ru/redos/7.3c/x86_64/updates/",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "14.10.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "26.11.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "26.11.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-10263",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-48897",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "\u0420\u0415\u0414 \u041e\u0421 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Moodle",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb \u0420\u0415\u0414 \u041e\u0421 7.3  (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751)",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043e\u0431\u0443\u0447\u0430\u044e\u0449\u0435\u0439 \u0441\u0440\u0435\u0434\u044b Moodle, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c\u0438 \u043f\u0440\u043e\u0446\u0435\u0434\u0443\u0440\u044b \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u044d\u043b\u0435\u043c\u0435\u043d\u0442\u0430\u043c \u0441\u0438\u0441\u0442\u0435\u043c\u044b",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u0430\u044f \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u044f (CWE-285)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043e\u0431\u0443\u0447\u0430\u044e\u0449\u0435\u0439 \u0441\u0440\u0435\u0434\u044b Moodle \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c\u0438 \u043f\u0440\u043e\u0446\u0435\u0434\u0443\u0440\u044b \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u044d\u043b\u0435\u043c\u0435\u043d\u0442\u0430\u043c \u0441\u0438\u0441\u0442\u0435\u043c\u044b",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041d\u0430\u0440\u0443\u0448\u0435\u043d\u0438\u0435 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://redos.red-soft.ru/support/secure/\nhttps://moodle.org/security/",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-285",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,8)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,5)"
}

bit-moodle-2024-48897

Vulnerability from bitnami_vulndb

Published

2024-11-21 07:13

Modified

2026-03-03 21:13

Summary

Moodle: idor in edit/delete rss feed

Details

A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify.

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Bitnami",
        "name": "moodle",
        "purl": "pkg:bitnami/moodle"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "4.1.19"
            },
            {
              "introduced": "4.2.0"
            },
            {
              "fixed": "4.4.9"
            }
          ],
          "type": "SEMVER"
        }
      ],
      "severity": [
        {
          "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
          "type": "CVSS_V3"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2024-48897"
  ],
  "database_specific": {
    "cpes": [
      "cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*"
    ],
    "severity": "Medium"
  },
  "details": "A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify.",
  "id": "BIT-moodle-2024-48897",
  "modified": "2026-03-03T21:13:17.555Z",
  "published": "2024-11-21T07:13:31.891Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2318821"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48897"
    }
  ],
  "schema_version": "1.5.0",
  "summary": "Moodle: idor in edit/delete rss feed"
}

CNVD-2024-46249

Vulnerability from cnvd - Published: 2024-11-27

Title

Moodle授权问题漏洞（CNVD-2024-46249）

Description

Moodle是Moodle开源的一套免费的电子学习软件平台，也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle存在授权问题漏洞，该漏洞源于需要进行额外的检查以确保用户只能编辑或删除他们有权修改的RSS源。攻击者可利用该漏洞绕过Web身份验证并获得设备的管理访问权限。

Severity

中

Patch Name

Moodle授权问题漏洞（CNVD-2024-46249）的补丁

Patch Description

Moodle是Moodle开源的一套免费的电子学习软件平台，也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle存在授权问题漏洞，该漏洞源于需要进行额外的检查以确保用户只能编辑或删除他们有权修改的RSS源。攻击者可利用该漏洞绕过Web身份验证并获得设备的管理访问权限。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://bugzilla.redhat.com/show_bug.cgi?id=2318821

Reference

https://nvd.nist.gov/vuln/detail/CVE-2024-48897

Impacted products

Name
['moodle Moodle >=4.4.0，<=4.4.4', 'moodle Moodle >=4.3.0，<=4.3.8', 'moodle Moodle >=4.2.0，<=4.2.11', 'moodle Moodle <=4.1.14']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2024-48897",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2024-48897"
    }
  },
  "description": "Moodle\u662fMoodle\u5f00\u6e90\u7684\u4e00\u5957\u514d\u8d39\u7684\u7535\u5b50\u5b66\u4e60\u8f6f\u4ef6\u5e73\u53f0\uff0c\u4e5f\u79f0\u8bfe\u7a0b\u7ba1\u7406\u7cfb\u7edf\u3001\u5b66\u4e60\u7ba1\u7406\u7cfb\u7edf\u6216\u865a\u62df\u5b66\u4e60\u73af\u5883\u3002\n\nMoodle\u5b58\u5728\u6388\u6743\u95ee\u9898\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u9700\u8981\u8fdb\u884c\u989d\u5916\u7684\u68c0\u67e5\u4ee5\u786e\u4fdd\u7528\u6237\u53ea\u80fd\u7f16\u8f91\u6216\u5220\u9664\u4ed6\u4eec\u6709\u6743\u4fee\u6539\u7684RSS\u6e90\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7Web\u8eab\u4efd\u9a8c\u8bc1\u5e76\u83b7\u5f97\u8bbe\u5907\u7684\u7ba1\u7406\u8bbf\u95ee\u6743\u9650\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://bugzilla.redhat.com/show_bug.cgi?id=2318821",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2024-46249",
  "openTime": "2024-11-27",
  "patchDescription": "Moodle\u662fMoodle\u5f00\u6e90\u7684\u4e00\u5957\u514d\u8d39\u7684\u7535\u5b50\u5b66\u4e60\u8f6f\u4ef6\u5e73\u53f0\uff0c\u4e5f\u79f0\u8bfe\u7a0b\u7ba1\u7406\u7cfb\u7edf\u3001\u5b66\u4e60\u7ba1\u7406\u7cfb\u7edf\u6216\u865a\u62df\u5b66\u4e60\u73af\u5883\u3002\r\n\r\nMoodle\u5b58\u5728\u6388\u6743\u95ee\u9898\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u9700\u8981\u8fdb\u884c\u989d\u5916\u7684\u68c0\u67e5\u4ee5\u786e\u4fdd\u7528\u6237\u53ea\u80fd\u7f16\u8f91\u6216\u5220\u9664\u4ed6\u4eec\u6709\u6743\u4fee\u6539\u7684RSS\u6e90\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7Web\u8eab\u4efd\u9a8c\u8bc1\u5e76\u83b7\u5f97\u8bbe\u5907\u7684\u7ba1\u7406\u8bbf\u95ee\u6743\u9650\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Moodle\u6388\u6743\u95ee\u9898\u6f0f\u6d1e\uff08CNVD-2024-46249\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "moodle Moodle \u003e=4.4.0\uff0c\u003c=4.4.4",
      "moodle Moodle \u003e=4.3.0\uff0c\u003c=4.3.8",
      "moodle Moodle \u003e=4.2.0\uff0c\u003c=4.2.11",
      "moodle Moodle \u003c=4.1.14"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2024-48897",
  "serverity": "\u4e2d",
  "submitTime": "2024-11-26",
  "title": "Moodle\u6388\u6743\u95ee\u9898\u6f0f\u6d1e\uff08CNVD-2024-46249\uff09"
}

FKIE_CVE-2024-48897

Vulnerability from fkie_nvd - Published: 2024-11-18 12:15 - Updated: 2024-11-20 14:48

Severity

4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Summary

A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify.

References

	URL	Tags
	secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=2318821	Issue Tracking

Impacted products

Vendor	Product	Version
moodle	moodle	*
moodle	moodle	*
moodle	moodle	*
moodle	moodle	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A2D74BD7-3907-49E1-B2FC-A45108CB5AF0",
              "versionEndIncluding": "4.1.14",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCE4F475-9272-4891-B690-3AB9720CD2D8",
              "versionEndIncluding": "4.2.11",
              "versionStartIncluding": "4.2.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A6A31566-F7AD-4FD4-82A6-CCE0D52123B8",
              "versionEndIncluding": "4.3.8",
              "versionStartIncluding": "4.3.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:moodle:moodle:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E073E9C6-D72C-4C82-92AF-6C02B81EB28B",
              "versionEndIncluding": "4.4.4",
              "versionStartIncluding": "4.4.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify."
    },
    {
      "lang": "es",
      "value": "Se encontr\u00f3 una vulnerabilidad en Moodle. Se requieren verificaciones adicionales para garantizar que los usuarios solo puedan editar o eliminar los feeds RSS que tengan permiso para modificar."
    }
  ],
  "id": "CVE-2024-48897",
  "lastModified": "2024-11-20T14:48:25.373",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "LOW",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 1.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 3.6,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2024-11-18T12:15:18.243",
  "references": [
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Issue Tracking"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2318821"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-285"
        }
      ],
      "source": "secalert@redhat.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-863"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-X3X9-349X-2485

Vulnerability from github – Published: 2024-11-18 12:30 – Updated: 2024-11-20 18:25

Summary

moodle: IDOR in edit/delete RSS feed

Details

A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify.

Severity

6.5 (Medium)


                  
                    CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

6.9 (Medium)


                  
                    CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "moodle/moodle"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "4.1.14"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "moodle/moodle"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "4.2.0"
            },
            {
              "fixed": "4.2.11"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "moodle/moodle"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "4.3.0"
            },
            {
              "fixed": "4.3.8"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "moodle/moodle"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "4.4.0"
            },
            {
              "fixed": "4.4.4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2024-48897"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-285",
      "CWE-863"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2024-11-18T23:46:24Z",
    "nvd_published_at": "2024-11-18T12:15:18Z",
    "severity": "MODERATE"
  },
  "details": "A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify.",
  "id": "GHSA-x3x9-349x-2485",
  "modified": "2024-11-20T18:25:07Z",
  "published": "2024-11-18T12:30:43Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48897"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2318821"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/moodle/moodle"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N",
      "type": "CVSS_V4"
    }
  ],
  "summary": "moodle: IDOR in edit/delete RSS feed"
}

WID-SEC-W-2024-3177

Vulnerability from csaf_certbund - Published: 2024-10-14 22:00 - Updated: 2024-10-14 22:00

Summary

Moodle: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen und die Offenlegung von Informationen

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Moodle ist ein Software-Paket, um internetbasierte Kurse zu entwickeln und durchzuführen. Es ist ein globales Softwareentwicklungsprojekt, das einen konstruktivistischen Lehr- und Lernansatz unterstützt.

Angriff: Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Moodle ausnutzen, um Sicherheitsvorkehrungen zu umgehen und vertrauliche Informationen offenzulegen.

Betroffene Betriebssysteme: - Sonstiges - UNIX - Windows

CVE-2024-48897

Es bestehen mehrere Schwachstellen in Moodle. Diese Fehler sind auf unzureichende Zugriffskontrollen zurückzuführen, die es ermöglichen, Feeds zu ändern, auf Berichtszeitpläne zuzugreifen und Audiences aus Berichten zu löschen. Ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um die Autorisierung zu umgehen und Aktionen ohne die erforderlichen Berechtigungen durchzuführen.

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.1.14 Open Source / Moodle		<4.1.14
Open Source Moodle <4.4.4 Open Source / Moodle		<4.4.4
Open Source Moodle <4.3.8 Open Source / Moodle		<4.3.8
Open Source Moodle <4.2.11 Open Source / Moodle		<4.2.11

CVE-2024-48898

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.1.14 Open Source / Moodle		<4.1.14
Open Source Moodle <4.4.4 Open Source / Moodle		<4.4.4
Open Source Moodle <4.3.8 Open Source / Moodle		<4.3.8
Open Source Moodle <4.2.11 Open Source / Moodle		<4.2.11

CVE-2024-48901

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.1.14 Open Source / Moodle		<4.1.14
Open Source Moodle <4.4.4 Open Source / Moodle		<4.4.4
Open Source Moodle <4.3.8 Open Source / Moodle		<4.3.8
Open Source Moodle <4.2.11 Open Source / Moodle		<4.2.11

CVE-2024-48896

Es besteht eine Schwachstelle in Moodle. Dieser Fehler besteht aufgrund einer unzureichenden Zugriffskontrolle bei der Behandlung von Fehlermeldungen in der Nachrichtenfunktion, wodurch versehentlich Benutzernamen offengelegt werden. Ein entfernter, authentisierter Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen preiszugeben.

Affected products

Known affected 4 products

Product	Identifier	Version	Remediation
Open Source Moodle <4.1.14 Open Source / Moodle		<4.1.14
Open Source Moodle <4.4.4 Open Source / Moodle		<4.4.4
Open Source Moodle <4.3.8 Open Source / Moodle		<4.3.8
Open Source Moodle <4.2.11 Open Source / Moodle		<4.2.11

CVE-2024-48899

Es bestehen mehrere Schwachstellen in Moodle. Diese Fehler sind auf unzureichende Zugangskontrollen zurückzuführen, die es ermöglichen, die Liste der Kursabzeichen abzurufen und die Empfänger der Abzeichen ohne Erlaubnis einzusehen. Ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um Autorisierungsmechanismen zu umgehen und vertrauliche Informationen preiszugeben.

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.4 Open Source / Moodle		<4.4.4

CVE-2024-48900

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Open Source Moodle <4.4.4 Open Source / Moodle		<4.4.4

References

8 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://moodle.org/mod/forum/discuss.php?d=462874	external
https://moodle.org/mod/forum/discuss.php?d=462876	external
https://moodle.org/mod/forum/discuss.php?d=462877	external
https://moodle.org/mod/forum/discuss.php?d=462878	external
https://moodle.org/mod/forum/discuss.php?d=462879	external
https://moodle.org/mod/forum/discuss.php?d=462880	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Moodle ist ein Software-Paket, um internetbasierte Kurse zu entwickeln und durchzuf\u00fchren. Es ist ein globales Softwareentwicklungsprojekt, das einen konstruktivistischen Lehr- und Lernansatz unterst\u00fctzt.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Moodle ausnutzen, um Sicherheitsvorkehrungen zu umgehen und vertrauliche Informationen offenzulegen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-3177 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3177.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-3177 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3177"
      },
      {
        "category": "external",
        "summary": "Moodle Security announcements vom 2024-10-14",
        "url": "https://moodle.org/mod/forum/discuss.php?d=462874"
      },
      {
        "category": "external",
        "summary": "Moodle Security announcements vom 2024-10-14",
        "url": "https://moodle.org/mod/forum/discuss.php?d=462876"
      },
      {
        "category": "external",
        "summary": "Moodle Security announcements vom 2024-10-14",
        "url": "https://moodle.org/mod/forum/discuss.php?d=462877"
      },
      {
        "category": "external",
        "summary": "Moodle Security announcements vom 2024-10-14",
        "url": "https://moodle.org/mod/forum/discuss.php?d=462878"
      },
      {
        "category": "external",
        "summary": "Moodle Security announcements vom 2024-10-14",
        "url": "https://moodle.org/mod/forum/discuss.php?d=462879"
      },
      {
        "category": "external",
        "summary": "Moodle Security announcements vom 2024-10-14",
        "url": "https://moodle.org/mod/forum/discuss.php?d=462880"
      }
    ],
    "source_lang": "en-US",
    "title": "Moodle: Mehrere Schwachstellen erm\u00f6glichen Umgehen von Sicherheitsvorkehrungen und die Offenlegung von Informationen",
    "tracking": {
      "current_release_date": "2024-10-14T22:00:00.000+00:00",
      "generator": {
        "date": "2024-10-15T10:19:33.229+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.8"
        }
      },
      "id": "WID-SEC-W-2024-3177",
      "initial_release_date": "2024-10-14T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-10-14T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c4.4.4",
                "product": {
                  "name": "Open Source Moodle \u003c4.4.4",
                  "product_id": "T038310"
                }
              },
              {
                "category": "product_version",
                "name": "4.4.4",
                "product": {
                  "name": "Open Source Moodle 4.4.4",
                  "product_id": "T038310-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:open_source:moodle:4.4.4"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c4.3.8",
                "product": {
                  "name": "Open Source Moodle \u003c4.3.8",
                  "product_id": "T038311"
                }
              },
              {
                "category": "product_version",
                "name": "4.3.8",
                "product": {
                  "name": "Open Source Moodle 4.3.8",
                  "product_id": "T038311-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:open_source:moodle:4.3.8"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c4.2.11",
                "product": {
                  "name": "Open Source Moodle \u003c4.2.11",
                  "product_id": "T038312"
                }
              },
              {
                "category": "product_version",
                "name": "4.2.11",
                "product": {
                  "name": "Open Source Moodle 4.2.11",
                  "product_id": "T038312-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:open_source:moodle:4.2.11"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c4.1.14",
                "product": {
                  "name": "Open Source Moodle \u003c4.1.14",
                  "product_id": "T038313"
                }
              },
              {
                "category": "product_version",
                "name": "4.1.14",
                "product": {
                  "name": "Open Source Moodle 4.1.14",
                  "product_id": "T038313-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:open_source:moodle:4.1.14"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Moodle"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-48897",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Moodle. Diese Fehler sind auf unzureichende Zugriffskontrollen zur\u00fcckzuf\u00fchren, die es erm\u00f6glichen, Feeds zu \u00e4ndern, auf Berichtszeitpl\u00e4ne zuzugreifen und Audiences aus Berichten zu l\u00f6schen. Ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um die Autorisierung zu umgehen und Aktionen ohne die erforderlichen Berechtigungen durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T038313",
          "T038310",
          "T038311",
          "T038312"
        ]
      },
      "release_date": "2024-10-14T22:00:00.000+00:00",
      "title": "CVE-2024-48897"
    },
    {
      "cve": "CVE-2024-48898",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Moodle. Diese Fehler sind auf unzureichende Zugriffskontrollen zur\u00fcckzuf\u00fchren, die es erm\u00f6glichen, Feeds zu \u00e4ndern, auf Berichtszeitpl\u00e4ne zuzugreifen und Audiences aus Berichten zu l\u00f6schen. Ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um die Autorisierung zu umgehen und Aktionen ohne die erforderlichen Berechtigungen durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T038313",
          "T038310",
          "T038311",
          "T038312"
        ]
      },
      "release_date": "2024-10-14T22:00:00.000+00:00",
      "title": "CVE-2024-48898"
    },
    {
      "cve": "CVE-2024-48901",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Moodle. Diese Fehler sind auf unzureichende Zugriffskontrollen zur\u00fcckzuf\u00fchren, die es erm\u00f6glichen, Feeds zu \u00e4ndern, auf Berichtszeitpl\u00e4ne zuzugreifen und Audiences aus Berichten zu l\u00f6schen. Ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um die Autorisierung zu umgehen und Aktionen ohne die erforderlichen Berechtigungen durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T038313",
          "T038310",
          "T038311",
          "T038312"
        ]
      },
      "release_date": "2024-10-14T22:00:00.000+00:00",
      "title": "CVE-2024-48901"
    },
    {
      "cve": "CVE-2024-48896",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in Moodle. Dieser Fehler besteht aufgrund einer unzureichenden Zugriffskontrolle bei der Behandlung von Fehlermeldungen in der Nachrichtenfunktion, wodurch versehentlich Benutzernamen offengelegt werden. Ein entfernter, authentisierter Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen preiszugeben."
        }
      ],
      "product_status": {
        "known_affected": [
          "T038313",
          "T038310",
          "T038311",
          "T038312"
        ]
      },
      "release_date": "2024-10-14T22:00:00.000+00:00",
      "title": "CVE-2024-48896"
    },
    {
      "cve": "CVE-2024-48899",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Moodle. Diese Fehler sind auf unzureichende Zugangskontrollen zur\u00fcckzuf\u00fchren, die es erm\u00f6glichen, die Liste der Kursabzeichen abzurufen und die Empf\u00e4nger der Abzeichen ohne Erlaubnis einzusehen. Ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um Autorisierungsmechanismen zu umgehen und vertrauliche Informationen preiszugeben."
        }
      ],
      "product_status": {
        "known_affected": [
          "T038310"
        ]
      },
      "release_date": "2024-10-14T22:00:00.000+00:00",
      "title": "CVE-2024-48899"
    },
    {
      "cve": "CVE-2024-48900",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in Moodle. Diese Fehler sind auf unzureichende Zugangskontrollen zur\u00fcckzuf\u00fchren, die es erm\u00f6glichen, die Liste der Kursabzeichen abzurufen und die Empf\u00e4nger der Abzeichen ohne Erlaubnis einzusehen. Ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um Autorisierungsmechanismen zu umgehen und vertrauliche Informationen preiszugeben."
        }
      ],
      "product_status": {
        "known_affected": [
          "T038310"
        ]
      },
      "release_date": "2024-10-14T22:00:00.000+00:00",
      "title": "CVE-2024-48900"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-48897 (GCVE-0-2024-48897)

Solutions

Solutions

Vulnerability from bitnami_vulndb

Tags

Sightings

Nomenclature