CVE-2025-32045

Summary

A flaw has been identified in Moodle where insufficient capability checks in certain grade reports allowed users without the necessary permissions to access hidden grades.

Affected Software

VendorProductVersion RangeStatus
4.5.3affected
4.4.7affected
4.3.11affected
4.1.17affected

Weaknesses

  • CWE-862: Missing Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References