CVE-2024-45689

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-45689

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-45689.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-45689

Aliases

Downstream

UBUNTU-CVE-2024-45689

Published

2024-11-20T10:22:48.635Z

Modified

2026-05-12T03:53:02.545172Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

Moodle: unprotected access to sensitive information via dynamic tables

Details

A flaw was found in Moodle. Dynamic tables did not enforce capability checks, which resulted in users having the ability to retrieve information they did not have permission to access.

Database specific

{
    "cna_assigner": "fedora",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/45xxx/CVE-2024-45689.json"
}

References

Affected packages

Git / github.com/moodle/moodle

Affected ranges

Type: GIT
Repo: https://github.com/moodle/moodle
Events: Introduced

ee91c6536f99e1633e2245780c4fe7f47340ed66

Fixed

c1d466b9115b38fcbb4ee07e4ab000e0db4e1413

Affected versions

v4.*

v4.4.0

v4.4.1

v4.4.2

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-45689.json"