Lucene search
HistoryFeb 19, 2024 - 5:15 p.m.
CVE-2024-25978
file picker
denial of service
unzip functionality
risk
insufficient file size checks
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
15.5%
Insufficient file size checks resulted in a denial of service risk in the file picker’s unzip functionality.
Related
ubuntucve
ubuntucve
CVE-2024-25978
2024-02-19 00:00:00
github
github
Uncontrolled Resource Consumption in moodle
2024-02-19 18:31:32
prion
prion
Design/Logic Flaw
2024-02-19 17:15:00
osv
osv
BIT-moodle-2024-25978
2024-03-31 18:22:52
Uncontrolled Resource Consumption in moodle
2024-02-19 18:31:32
cve
cve
CVE-2024-25978
2024-02-19 17:15:08
veracode
veracode
Denial Of Service (DoS)
2024-04-03 10:29:42
cnvd
cnvd
Moodle Denial of Service Vulnerability (CNVD-2024-13538)
2024-03-14 00:00:00
cvelist
cvelist
openvas
openvas
Fedora: Security Advisory for moodle (FEDORA-2024-d2f180202f)
2024-03-01 00:00:00
Moodle 4.1.x < 4.1.9, 4.2.x < 4.2.5, 4.3.x < 4.3.3 Multiple Vulnerabilities
2024-02-20 00:00:00
nessus
nessus
Fedora 38 : moodle (2024-d2f180202f)
2024-02-29 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: moodle-4.1.9-1.fc38
2024-02-29 02:00:34
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
15.5%
Related for NVD:CVE-2024-25978