CNNVD-202510-3259 Information

CNNVD ID

CNNVD-202510-3259

Related CVE

CVE-2025-62395

• CNNVD Published: 2025-10-23

Description (Chinese)

Moodle是Moodle开源的一套免费的电子学习软件平台，也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle存在安全漏洞，该漏洞源于cohort search web service功能中，权限较低的上下文用户可访问系统上下文中的队列信息，可能导致泄露受限管理数据。

Description (English)

Moodle is an open-source, free-of-charge e-learning platform known as the curriculum management system, the learning management system or the virtual learning environment. Modle has a security loophole, which originates from the cohort search web service, where a lower-licensed context user has access to queued information in the context of the system, which may lead to the disclosure of restricted management data.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Moodle

Published

2025-10-23

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-62395 https://bugzilla.redhat.com/show_bug.cgi?id=2404428

Patch

https://moodle.org/security