ROS-2-561

2.561 Multiple Vulnerabilities in Moodle (CVE-2021-32472 - CVE-2021-32478)

1. Vulnerability Description:

CVE-2021-32478 A vulnerability exists due to insufficient cleansing of user-provided data at the LTI authorization endpoint. A remote attacker could trick a victim into clicking a specially crafted link and executing arbitrary HTML and script code in the user’s browser in the context of a vulnerable website. CVE-2021-32472 A vulnerability exists due to excessive data output by an application. A remotely authenticated instructor exporting a forum to CSV format could receive CSVs of forums from all courses. CVE-2021-32473 A vulnerability exists due to excessive data output by the application. A remotely authenticated student can view their quiz grade before it is released using the quiz web service. CVE-2021-32474 A vulnerability allows a remote user to execute arbitrary SQL queries on a database. The vulnerability exists due to insufficient cleansing of user-supplied data in an XML-RPC call. A remote administrator can send a specially crafted query to a vulnerable application and execute arbitrary SQL commands on the application’s database. CVE-2021-32475 A vulnerability exists due to insufficient scrubbing of user-provided data within the identification numbers displayed in a quiz grade report. A remote attacker could inject and execute arbitrary HTML and script code in the user’s browser in the context of a vulnerable website. CVE-2021-32476 A vulnerability exists due to insufficient validation of user-entered data in the draft file area. A remote attacker could pass specially crafted input data to an application and perform a denial of service (DoS) attack. CVE-2021-32477 A vulnerability exists because the last time a user logged into the mobile app is displayed on their profile page. A remote attacker could gain unauthorized access to sensitive information in the system.Identifier of the Information Security Threat Data Bank of the FSTEC of Russia: BDU:2021-02734, BDU:2021-02735, BDU:2021-02735, BDU:2021-02736, BDU:2021-02737, BDU:2021-02738, BDU:2021-02740, BDU:2021-02739

2. Possible remedial actions to address the vulnerability

Refuse to use Moodle or - install security updates for the package: moodle**Installing updates is possible in the following ways:**a) if the computer with the installed OS version has access to the vendor’s official repository, you should run the update as an administrator with the command:# yum updateAfter the list of updated packages is displayed, agree to apply the updates by pressing the Y key on the keyboard. Wait until the update installation is complete and make sure that there are no errors during its installation.b)If the computer with the installed OS version does not have access to the vendor’s official repository, you should perform the following actions: - download the updated package (with dependencies if necessary): http://repo.red-soft.ru/redos/7.2c/x86_64/updates/moodle-3.11-0.1.el7.noarch.rpm Check the integrity and authenticity of the package according to instructionsInstall the downloaded package(s) with the command:# yum localinstall *.rpmWhen the list of updated packages is displayed, agree to apply the updates by pressingY on the keyboard. Wait for the updates to finish installing and make sure there are no errors during the installation.

Date of last modification: 08.09.2021