UBUNTU-CVE-2024-43429

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2024-43429

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-43429.json

JSON Data

https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2024-43429

Related

CVE-2024-43429

Published

2024-11-11T13:15:00Z

Modified

2025-01-13T10:25:55Z

Summary

[none]

Details

A flaw was found in moodle. Some hidden user profile fields are visible in gradebook reports, which could result in users without the "view hidden user fields" capability having access to the information.

References

Affected packages

Ubuntu:Pro:16.04:LTS / moodle

Package

Name: moodle
Purl: pkg:deb/ubuntu/moodle@3.0.3+dfsg-0ubuntu1?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.7.9+dfsg-1

2.7.10+dfsg-1

2.7.11+dfsg-1

2.7.11+dfsg-2

2.7.12+dfsg-1

3.*

3.0.3+dfsg-0ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / moodle

Package

Name: moodle
Purl: pkg:deb/ubuntu/moodle@3.0.3+dfsg-0ubuntu1?arch=source&distro=esm-apps/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

3.*

3.0.3+dfsg-0ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}