CVE Vulnerabilities

CVE-2021-32473

Published: Mar 11, 2022 | Modified: Mar 18, 2022
CVSS 3.x
5.3
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu
LOW

It was possible for a student to view their quiz grade before it had been released, using a quiz web service. Moodle 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8, 3.5 to 3.5.17 and earlier unsupported versions are affected

Affected Software

Name Vendor Start Version End Version
Moodle Moodle * 3.5.18 (excluding)
Moodle Moodle 3.8.0 (including) 3.8.9 (excluding)
Moodle Moodle 3.9.0 (including) 3.9.7 (excluding)
Moodle Moodle 3.10.0 (including) 3.10.4 (excluding)
Moodle Ubuntu bionic *
Moodle Ubuntu trusty *
Moodle Ubuntu xenial *

References