CVE-2024-48900

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-48900

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-48900.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-48900

Aliases

BIT-moodle-2024-48900
GHSA-g8r3-2v89-j6r5

Published

2024-11-13T15:15:07Z

Modified

2025-07-01T16:11:03.391684Z

Summary

[none]

Details

A vulnerability was found in Moodle. Additional checks are required to ensure users with permission to view badge recipients can only access lists of those they are intended to have access to.

References

https://bugzilla.redhat.com/show_bug.cgi?id=2318818

Affected packages

Git / github.com/moodle/moodle

Affected ranges

Type: GIT
Repo: https://github.com/moodle/moodle
Events: Introduced

ee91c6536f99e1633e2245780c4fe7f47340ed66

Fixed

d7e3bea9fa95ff686b370969cc1bcc3fca0919bf

Affected versions

v4.*

v4.4.0

v4.4.1

v4.4.2

v4.4.3