CVE-2023-5542
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Summary
CVE-2023-5542 refers to a vulnerability in which students in "Only see own membership" groups on a platform were able to view the memberships of other group members, despite this information being intended to remain hidden. This issue could potentially lead to privacy breaches and unintended exposure of user information within affected groups. The precise cause of this vulnerability is not specified in the provided description, but it appears to be related to a misconfiguration or flaw in the platform's group settings. Users in these groups should be cautious about the information they share and consider adjusting their privacy settings as necessary to mitigate potential risks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Moodle
- Fedora Operating System
Affected Vendors
- Fedora Project
- Moodle HQ
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions