Nicolas Martignoni

**Name of the Vulnerable Software and Affected Versions** Moodle versions 2.5.9 and earlier, 2.6.x before 2.6.7, 2.7.x before 2.7.4, 2.8.x before 2.8.2 **Description** The issue is related to resource management errors in the filter/mediaplugin/filter.php component of the Moodle learning management system. It can be exploited by a remote attacker using a specially crafted string containing regular expressions, potentially leading to a denial of service (DoS) by consuming CPU resources or causing a partial outage. **Recommendations** For versions 2.5.9 and earlier, update to a version later than 2.5.9. For versions 2.6.x before 2.6.7, update to version 2.6.7 or later. For versions 2.7.x before 2.7.4, update to version 2.7.4 or later. For versions 2.8.x before 2.8.2, update to version 2.8.2 or later.