CVE-2023-1402

CVSS v3.1

4.3

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Moodle versions (affected versions not specified)

Description The issue concerns the course participation report, which required additional checks to prevent displaying roles that the user did not have access to view.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exposure of Resource to Wrong Sphere

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-668CWE-200

Related Identifiers

ALT-PU-2020-3235

ALT-PU-2023-2012

ALT-PU-2023-2057

ALT-PU-2023-5127

BIT-MOODLE-2023-1402

CVE-2023-1402

GHSA-VJ5P-FP42-774P

Affected Products

Alt Linux

Moodle

CVE-2023-1402

Weakness Enumeration

Related Identifiers

Affected Products

References · 15