Moodle · Moodle · CVE-2022-30600
**Name of the Vulnerable Software and Affected Versions**
Moodle (affected versions not specified)
**Description**
A flaw was found in the logic used to count failed login attempts, which could result in the account lockout threshold being bypassed. This issue is related to the implementation of the core auth class in the Moodle virtual learning environment, specifically with the limitations of excessive authentication attempts. Exploitation of this issue may allow a remote attacker to bypass security restrictions.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.