CNNVD-202602-460 Information

CNNVD ID

CNNVD-202602-460

Related CVE

CVE-2025-67853

• CNNVD Published: 2026-02-03

Description (Chinese)

Moodle是Moodle开源的一套免费的电子学习软件平台，也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle存在安全漏洞，该漏洞源于确认邮件服务缺乏适当的速率限制，可能导致攻击者更容易枚举或猜测用户凭据，从而对用户账户进行暴力破解攻击。

Description (English)

Moodle is an open-source, free-of-charge e-learning platform known as the curriculum management system, the learning management system or the virtual learning environment. There is a security loophole in Modle, which stems from the recognition of the lack of appropriate speed limits for mail services, which may make it easier for the attackers to catalogue or speculate on user evidence, thereby carrying out violent crack attacks on user accounts.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Moodle

Published

2026-02-03

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-67853 https://bugzilla.redhat.com/show_bug.cgi?id=2423847