PT-2017-17789 · Moodle · Moodle

Charles Fulton

Published

2017-07-17

Updated

2022-05-13

CVE-2017-7531

CVSS v3.1

4.3

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Moodle version 3.3

Description The course overview block in Moodle reveals activities in hidden courses, potentially exposing sensitive information.

Recommendations For Moodle version 3.3, consider hiding the course overview block to prevent the disclosure of activities in hidden courses until a fix is available.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2017-7531

GHSA-W2PJ-R8M3-R4JC

Affected Products

Moodle

PT-2017-17789 · Moodle · Moodle

CVE-2017-7531

Weakness Enumeration

Related Identifiers

Affected Products

References · 11