CNNVD-202510-3254 Information

CNNVD ID

CNNVD-202510-3254

Related CVE

CVE-2025-62400

• CNNVD Published: 2025-10-23

Description (Chinese)

Moodle是Moodle开源的一套免费的电子学习软件平台，也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle存在安全漏洞，该漏洞源于暴露隐藏组名称给具有创建日历事件权限但无查看隐藏组权限的用户，可能导致泄露私有或受限组信息。

Description (English)

Moodle is an open-source, free-of-charge e-learning platform known as the curriculum management system, the learning management system or the virtual learning environment. Moodle has a security loophole, which arises from the exposure of hidden group names to users with permission to create calendar events without access to hidden group privileges, which may lead to the disclosure of private or restricted group information.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Moodle

Published

2025-10-23

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-62400 https://bugzilla.redhat.com/show_bug.cgi?id=2404433

Patch

https://download.moodle.org/