CVE-2024-48898

Moodle: some users can delete audiences of other reports

Description

A vulnerability was found in Moodle. Users with access to delete audiences from reports could delete audiences from other reports that they do not have permission to delete from.

INFO

Published Date :

2024-11-18T11:14:26.903Z

Last Modified :

2024-11-18T11:14:26.903Z

Source :

redhat

AFFECTED PRODUCTS

The following products are affected by CVE-2024-48898 vulnerability.

Vendors	Products
Moodle	Moodle

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-48898.

URL	Resource
https://bugzilla.redhat.com/show_bug.cgi?id=2318820

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact