CVE-2018-1082

Summary

A flaw was found in Moodle 3.4 to 3.4.1, and 3.3 to 3.3.4. If a user account using OAuth2 authentication method was once confirmed but later suspended, the user could still login to the site.

Affected Software

VendorProductVersion RangeStatus
Red Hat, Inc.Moodle3.4 to 3.4.1, 3.3 to 3.3.4affected

Weaknesses

  • CWE-285: CWE-285

ADP Enrichment

CVE Program Container

Additional References

References