CVE-2025-26526

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions The product name cannot be determined.

Description The issue concerns permission checks in Feedback activities, where restrictions related to Separate Groups mode were not properly considered before allowing users to view or delete responses.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Incorrect Authorization

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-863CWE-284

Related Identifiers

ALT-PU-2025-6924

ALT-PU-2025-7344

BDU:2025-02324

BIT-MOODLE-2025-26526

CVE-2025-26526

GHSA-PXG4-XJP7-W9C5

Affected Products

Alt Linux

Red Os

CVE-2025-26526

Weakness Enumeration

Related Identifiers

Affected Products

References · 17