CVE-2025-62401

Summary

An issue in Moodle’s timed assignment feature allowed students to bypass the time restriction, potentially giving them more time than allowed to complete an assessment.

Affected Software

VendorProductVersion RangeStatus
5.0.0 < 5.0.3affected
4.5.0 < 4.5.7affected
4.4.0 < 4.4.11affected
4.1.0 < 4.1.21affected

Weaknesses

  • CWE-285: Improper Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References