CVE-2024-45691 Information

Description

A flaw was found in Moodle. When restricting access to a lesson activity with a password certain passwords could be bypassed or less secure due to a loose comparison in the password-checking logic. This issue only affected passwords set to \magic hash\ values.

Reference

https://bugzilla.redhat.com/show_bug.cgi?id=2309940 https://moodle.org/security/