9 matches found
CVE-2025-68270
The Open edX Platform is a learning management platform. Prior to commit 05d0d0936daf82c476617257aa6c35f0cd4ca060, CourseLimitedStaffRole users are able to access and edit courses in studio if they are granted the role on an org rather than on a course, and CourseLimitedStaffRole users are able t...
CVE-2025-68270
The Open edX Platform is a learning management platform. Prior to commit 05d0d0936daf82c476617257aa6c35f0cd4ca060, CourseLimitedStaffRole users are able to access and edit courses in studio if they are granted the role on an org rather than on a course, and CourseLimitedStaffRole users are able t...
CVE-2025-68270 CourseLimitedStaff Role Allows Studio Access
The Open edX Platform is a learning management platform. Prior to commit 05d0d0936daf82c476617257aa6c35f0cd4ca060, CourseLimitedStaffRole users are able to access and edit courses in studio if they are granted the role on an org rather than on a course, and CourseLimitedStaffRole users are able t...
CVE-2025-68270
The CVE-2025-68270 issue affects the Open edX Platform. Before commit 05d0d0936daf82c476617257aa6c35f0cd4ca060, users with CourseLimitedStaffRole could access and edit courses in Studio if their role was granted at the organization level rather than per course, and could list courses they have th...
CVE-2025-68270 CourseLimitedStaff Role Allows Studio Access
The Open edX Platform is a learning management platform. Prior to commit 05d0d0936daf82c476617257aa6c35f0cd4ca060, CourseLimitedStaffRole users are able to access and edit courses in studio if they are granted the role on an org rather than on a course, and CourseLimitedStaffRole users are able t...
CVE-2025-68270 CourseLimitedStaff Role Allows Studio Access
The Open edX Platform is a learning management platform. Prior to commit 05d0d0936daf82c476617257aa6c35f0cd4ca060, CourseLimitedStaffRole users are able to access and edit courses in studio if they are granted the role on an org rather than on a course, and CourseLimitedStaffRole users are able t...
PT-2025-51780
The Open edX Platform is a learning management platform. Prior to commit 05d0d0936daf82c476617257aa6c35f0cd4ca060, CourseLimitedStaffRole users are able to access and edit courses in studio if they are granted the role on an org rather than on a course, and CourseLimitedStaffRole users are able t...
CVAD- 2308- Delete VM operation is showing access denied in the Web studio and same works in studio.
After the upgrade of the site from 2305 to 2308, the delegated users get a permissioned denied message when trying to delete a VM. Other operation from the web studio works fine. Same delete operation works fine in the desktop studio, but it shows access denied in the web studio. Under the CDF...
CVE-2025-29802
CVE-2025-29802 (Visual Studio Elevation of Privilege) is a local elevation-of-privilege vulnerability in Microsoft Visual Studio caused by improper access control. The issue affects Visual Studio-related components (e.g., Visual Studio 2022 up to version 17.12 and related tooling) and can be expl...