CVE-2024-43427

low

Description

A flaw was found in moodle. When creating an export of site administration presets, some sensitive secrets and keys are not being excluded from the export, which could result in them unintentionally being leaked if the presets are shared with a third party.

References

https://moodle.org/mod/forum/discuss.php?d=461195

https://bugzilla.redhat.com/show_bug.cgi?id=2304255

Details

Source: Mitre, NVD

Published: 2024-11-11

Updated: 2024-11-12

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 3.7

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Severity: Low

Detections

Analytics