Lucene search
China National Vulnerability DatabaseCNVD-2021-92540HistoryNov 17, 2021 - 12:00 a.m.
Moodle Input Validation Error Vulnerability (CNVD-2021-92540)
2021-11-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.008 Low
EPSS
Percentile
81.3%
Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment. a security vulnerability exists in Moodle, which stems from a problem when the software restores backup files. an attacker could construct an incorrectly formatted backup file, which could lead to remote code execution when the backup file is restored.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Moodle Moodle >=3.10.0, | le | 3.10.7 | |
| Moodle Moodle >=3.9.0, | le | 3.9.10 | |
| Moodle Moodle >=3.11.0, | le | 3.11.3 |
Related
prion
prion
Remote code execution
2021-11-22 16:15:00
cve
cve
CVE-2021-3943
2021-11-22 16:15:07
ubuntucve
ubuntucve
CVE-2021-3943
2021-11-22 00:00:00
osv
osv
CVE-2021-3943
2021-11-22 16:15:07
BIT-moodle-2021-3943
2024-03-06 11:07:54
Moodle vulnerable to RCE via unsafe deserialization
2021-11-23 00:00:51
cvelist
cvelist
CVE-2021-3943
2021-11-22 15:59:29
veracode
veracode
Remote Code Execution (RCE)
2021-11-23 06:10:35
github
github
Moodle vulnerable to RCE via unsafe deserialization
2021-11-23 00:00:51
nvd
nvd
CVE-2021-3943
2021-11-22 16:15:07
nessus
nessus
Moodle 3.10.x < 3.10.8 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.11.x < 3.11.4 Multiple Vulnerabilities
2023-02-20 00:00:00
Moodle 3.9.x < 3.9.11 Multiple Vulnerabilities
2023-02-20 00:00:00
openvas
openvas
Moodle < 3.9.11, 3.10.x < 3.10.8, 3.11.x < 3.11.4 Multiple Vulnerabilities
2021-11-23 00:00:00