CVE-2024-43435

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Nov 11, 2024

Updated: Nov 12, 2024

CWE ID 754

Summary

CVE-2024-43435 is a vulnerability affecting Moodle, an popular open-source learning platform. The issue lies in insufficient capability checks, which enables users with access to restore glossaries in individual courses to move those restored glossaries into the global site glossary, potentially leading to unauthorized data modification. This could potentially cause disruptions and data security concerns, emphasizing the importance of applying the necessary patch or update to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/x6lBz8
https://www.cve.org/CVERecord?id=CVE-2024-43435
https://nvd.nist.gov/vuln/detail/CVE-2024-43435

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Submarine Cables Face Increasing Threats Amid Geopolitical Tensions and Limited Repair Capacity

US Violent Extremists Likely Shifting Focus to Targeted Physical Threats in 2025

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Know What Matters

For Customers

For Partners

CVE-2024-43435

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations