CNNVD-202510-3256 Information

CNNVD ID

CNNVD-202510-3256

Related CVE

CVE-2025-62398

• CNNVD Published: 2025-10-23

Description (Chinese)

Moodle是Moodle开源的一套免费的电子学习软件平台，也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle存在安全漏洞，该漏洞源于存在严重身份验证缺陷，可能导致攻击者绕过多因素身份验证，进而危害用户账户。

Description (English)

Moodle is an open-source, free-of-charge e-learning platform known as the curriculum management system, the learning management system or the virtual learning environment. There is a security loophole in Modle, which stems from serious identification deficiencies, which may result in the attackers over-identifying factors, thereby jeopardizing user accounts.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Moodle

Published

2025-10-23

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-62398 https://bugzilla.redhat.com/show_bug.cgi?id=2404431

Patch

https://moodle.org/security/