CVE-2022-0334

State: PUBLISHED · Published: 2022-01-25 · Updated: 2024-08-02 · Assigner: fedora

Description

A flaw was found in Moodle in versions 3.11 to 3.11.4, 3.10 to 3.10.8, 3.9 to 3.9.11 and earlier unsupported versions. Insufficient capability checks could lead to users accessing their grade report for courses where they did not have the required gradereport/user:view capability.

CWE

CWE-863 — CWE-863

Affected

n/a / moodle — v=moodle 3.11.5, moodle 3.10.9 and moodle 3.9.12 [affected]

CVSS

(none)

References

https://bugzilla.redhat.com/show_bug.cgi?id=2043664 x_refsource_MISC
https://moodle.org/mod/forum/discuss.php?d=431102 x_refsource_MISC

Source

cvelistV5-main/cves/2022/0xxx/CVE-2022-0334.json