CVE-2024-38275

2024-06-1820:15:13

CWE-226

fedora

web.nvd.nist.gov

moodle

curl

request headers

http authorization

redirection

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

6.2

Confidence

High

EPSS

Percentile

9.0%

JSON

The cURL wrapper in Moodle retained the original request headers when following redirects, so HTTP authorization header information could be unintentionally sent in requests to redirect URLs.

CNA Affected

[
  {
    "vendor": "Moodle",
    "product": "Moodle",
    "versions": [
      {
        "status": "affected",
        "version": "4.4",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "4.3",
        "lessThanOrEqual": "4.3.4",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "4.2",
        "lessThanOrEqual": "4.2.7",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "4.1",
        "lessThanOrEqual": "4.1.10",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]