Moodle · Moodle · CVE-2022-0334
**Name of the Vulnerable Software and Affected Versions**
Moodle versions 3.11 to 3.11.4
Moodle versions 3.10 to 3.10.8
Moodle versions 3.9 to 3.9.11
Moodle versions earlier than 3.9
**Description**
A flaw was found in the software that could allow users to access their grade report for courses where they did not have the required `gradereport/user:view` capability due to insufficient capability checks.
**Recommendations**
For versions 3.11 to 3.11.4, update to a version later than 3.11.4 to resolve the issue.
For versions 3.10 to 3.10.8, update to a version later than 3.10.8 to resolve the issue.
For versions 3.9 to 3.9.11, update to a version later than 3.9.11 to resolve the issue.
For versions earlier than 3.9, update to a version later than 3.9.11 to resolve the issue.