CNNVD-202510-3257 Information

CNNVD ID

CNNVD-202510-3257

Related CVE

CVE-2025-62397

• CNNVD Published: 2025-10-23

Description (Chinese)

Moodle是Moodle开源的一套免费的电子学习软件平台，也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle存在安全漏洞，该漏洞源于路由器对无效课程ID响应不一致，可能导致攻击者推断存在的课程ID，从而辅助侦察。

Description (English)

Moodle is an open-source, free-of-charge e-learning platform known as the curriculum management system, the learning management system or the virtual learning environment. There is a security loophole in Modle, which stems from the inconsistent response of routers to invalid courses ID, which may lead to an assumption of existence by the attackers, thus supporting surveillance.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Moodle

Published

2025-10-23

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-62397 https://bugzilla.redhat.com/show_bug.cgi?id=2404430

Patch

https://moodle.org/security/