CVE-2023-5549

CVSS v3.1

3.3

Low

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned in the provided descriptions.

Description The issue is related to insufficient web service capability checks. This allowed users to move categories they had permission to manage to a parent category they did not have the capability to manage. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Access Control

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284CWE-269

Related Identifiers

BIT-MOODLE-2023-5549

CVE-2023-5549

GHSA-FM5H-58G2-4M3F

Affected Products

Moodle

Ckeditor4

Extra Packages For Enterprise Linux

Fedora

Moodle/Moodle

Upx

Wireshark

CVE-2023-5549

Weakness Enumeration

Related Identifiers

Affected Products

References · 14