Moodle Permission Issues Vulnerability

Moodle is Moodle open source set of free e-learning software platform, also known as course management system, learning management system or virtual learning environment. A vulnerability exists in Moodle for privilege issues. The vulnerability stems from insufficient permission checking that allo...

PT-2025-11012 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.13.0-rc6 Description: A crash can occur in the Linux kernel when a namespace is disabled due to a null pointer dereference. This issue arises because the namespace percpu counter, which protects pending I/O, i...

CVE-2025-27816

A vulnerability was discovered in the Arctera InfoScale 7.0 through 8.0.2 where a .NET remoting endpoint can be exploited due to the insecure deserialization of potentially untrusted messages. The vulnerability is present in the Windows PluginHost service, which runs on all the servers where...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from disabling all links, which could lead to problems with internal API calls...

SUSE CVE-2025-21809

In the Linux kernel, the following vulnerability has been resolved: rxrpc, afs: Fix peer hash locking vs RCU callback In its address list, afs now retains pointers to and refs on one or more rxrpcpeer objects. The address list is freed under RCU and at this time, it puts the refs on those peers...

DEBIAN-CVE-2025-21809

In the Linux kernel, the following vulnerability has been resolved: rxrpc, afs: Fix peer hash locking vs RCU callback In its address list, afs now retains pointers to and refs on one or more rxrpcpeer objects. The address list is freed under RCU and at this time, it puts the refs on those peers...

CVE-2025-21809

In the Linux kernel, the following vulnerability has been resolved: rxrpc, afs: Fix peer hash locking vs RCU callback In its address list, afs now retains pointers to and refs on one or more rxrpcpeer objects. The address list is freed under RCU and at this time, it puts the refs on those peers...

CVE-2022-49626

In the Linux kernel, the following vulnerability has been resolved: sfc: fix use after free when disabling sriov Use after free is detected by kfence when disabling sriov. What was read after being freed was vf-pcidev: it was freed from pcidisablesriov and later read in efxef10sriovfreevfvports,...

CVE-2022-49626 sfc: fix use after free when disabling sriov

In the Linux kernel, the following vulnerability has been resolved: sfc: fix use after free when disabling sriov Use after free is detected by kfence when disabling sriov. What was read after being freed was vf-pcidev: it was freed from pcidisablesriov and later read in efxef10sriovfreevfvports,...

CVE-2022-49626 sfc: fix use after free when disabling sriov

In the Linux kernel, the following vulnerability has been resolved: sfc: fix use after free when disabling sriov Use after free is detected by kfence when disabling sriov. What was read after being freed was vf-pcidev: it was freed from pcidisablesriov and later read in efxef10sriovfreevfvports,...

CVE-2022-49146

In the Linux kernel, the following vulnerability has been resolved: virtio: use virtiodeviceready in virtiodevicerestore After waking up a suspended VM, the kernel prints the following trace for virtio drivers which do not directly call virtiodeviceready in the .restore: PM: suspend exit irq 22:...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a post-release reuse issue when disabling the elevator in delgendisk...

Moodle has an IDOR in badges allows disabling of arbitrary badges

Insufficient capability checks made it possible to disable badges a user does not have permission to access...

GHSA-G88W-V4CQ-QGCP Moodle has an IDOR in badges allows disabling of arbitrary badges

Insufficient capability checks made it possible to disable badges a user does not have permission to access...

CVE-2025-26531

CVE-2025-26531 is an IDOR-type vulnerability in Moodle’s badges system caused by insufficient capability checks, which can let an attacker disable badges that they should not have access to. The connected sources (OSV, GHSA, CNVD, plus related advisories) consistently describe this as an authoriz...

CVE-2025-26531 IDOR in badges allows disabling of arbitrary badges

Insufficient capability checks made it possible to disable badges a user does not have permission to access...

GHSA-CRG3-FJM2-XVPQ

creationtimestamp| type| source ---|---|--- 2025-02-11 14:00:07+00:00| seen| https://daniel.haxx.se/blog/2025/02/11/disabling-cert-checks-we-have-not-learned-much/...

Federal Aviation Administration TCAS 安全漏洞

Federal Aviation Administration TCAS is a traffic alert and collision avoidance system organized by the Federal Aviation Administration FAA in the United States. A security vulnerability exists in Federal Aviation Administration TCAS that originates from an attacker being able to impersonate a...

CVE-2024-57915

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: userial: Disable ep before setting port to null to fix the crash caused by port being null Considering that in some extreme cases, when performing the unbinding operation, gserialdisconnect has cleared gser-ioport,...

PT-2025-4744 · Re11S · Re11S

Name of the Vulnerable Software and Affected Versions: RE11S version 1.11 Description: A stack overflow issue was discovered in the formStaDrvSetup function through the rootAPmac parameter. This issue allows for a potential overflow, which could lead to security problems. Recommendations: For RE1...