CVE-2024-48899

CVE-2024-48899: Moodle: idor when accessing list of course badges

Weakness CWE-284

Published November 20, 2024

Last update November 20, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A vulnerability was found in Moodle. Additional checks are required to ensure users can only fetch the list of course badges for courses that they are intended to have access to.

Key dates

02Disclosure timeline

November 20, 2024 CVE published

November 20, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2024-48899 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/284.html

Related vulnerabilities

CVE-2024-48899: Moodle: idor when accessing list of course badges

01Description

02Disclosure timeline

03References

04Related CVE