CVE-2023-5551 Moodle: forum summary report shows students from other groups when in separate groups mode

🗓️ 09 Nov 2023 19:39:11Reported by fedoraType

Separate Groups mode issue in Moodle foru

Reporter	Title	Published	Views	Family All 29
ATTACKERKB	CVE-2023-5551	9 Nov 202320:15	–	attackerkb
BDU FSTEC	The vulnerability of the virtual learning environment Moodle, related to the disclosure of confidential information to unauthorized entities, allows a violator to gain unauthorized access to protected information.	4 Apr 202400:00	–	bdu_fstec
CNNVD	Moodle Security Breach	18 Oct 202300:00	–	cnnvd
CVE	CVE-2023-5551	9 Nov 202319:39	–	cve
EUVD	EUVD-2023-2994	3 Oct 202520:07	–	euvd
Fedora	[SECURITY] Fedora 39 Update: moodle-4.3-1.fc39	3 Nov 202318:56	–	fedora
Tenable Nessus	Fedora 39 : moodle (2023-6bd1586dc5)	7 Nov 202300:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2023-5551	5 Sep 202500:00	–	nessus
Tenable Nessus	Moodle < 3.9.24 Multiple Vulnerabilities	10 Apr 202500:00	–	nessus
Tenable Nessus	Moodle 3.11.x < 3.11.17 Multiple Vulnerabilities	10 Apr 202500:00	–	nessus

[
  {
    "versions": [
      {
        "status": "affected",
        "version": "4.2.0",
        "lessThan": "4.2.3",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "4.1.0",
        "lessThan": "4.1.6",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "4.0.0",
        "lessThan": "4.0.11",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "3.11.0",
        "lessThan": "3.11.17",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "3.9.24",
        "versionType": "semver"
      }
    ],
    "packageName": "moodle",
    "collectionURL": "https://git.moodle.org",
    "defaultStatus": "unaffected"
  }
]

Source	Link
moodle	www.moodle.org/mod/forum/discuss.php
git	www.git.moodle.org/gw
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

19 Apr 2024 13:48Current

4.6Medium risk

Vulners AI Score4.6

CVSS 3.13.3

EPSS0.00278

CWE-200