Description

A vulnerability was found in Moodle. Users with access to delete audiences from reports could delete audiences from other reports that they do not have permission to delete from.

Remediation

References

CVE-2024-48898

Related Vulnerabilities

WebLogic CVE-2020-2519 Vulnerability (CVE-2020-2519)

WordPress Plugin Advanced Custom Fields (ACF) Security Bypass (5.12)

MySQL CVE-2024-21173 Vulnerability (CVE-2024-21173)

Grafana Insufficiently Protected Credentials Vulnerability (CVE-2019-15635)

phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-6629)

Severity

Medium

Classification

CVE-2024-48898 CWE-862 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities