CVE-2024-45689

Summary

A flaw was found in Moodle. Dynamic tables did not enforce capability checks, which resulted in users having the ability to retrieve information they did not have permission to access.

Affected Software

VendorProductVersion RangeStatus
0 < 4.1.13affected
4.2 < 4.2.10affected
4.3 < 4.3.7affected
4.4 < 4.4.3affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References