CVE-2025-62400

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:L/Au:S/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions Moodle (affected versions not specified)

Description A flaw exists in Moodle that allows users with permission to create calendar events to view the names of hidden groups, even if they do not have permission to view those groups. This can lead to the disclosure of private or restricted group information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

BDU:2025-15612

BIT-MOODLE-2025-62400

CVE-2025-62400

GHSA-422V-W6C5-VQ42

Affected Products

Moodle

Red Os

CVE-2025-62400

Weakness Enumeration

Related Identifiers

Affected Products

References · 17