CVE Radar

CVE Radar Logo
CVERadar

Edition used by more than 30,000 companies in more than 150 countries.
Sign Up For Free

CVE-2024-48898

High Severity|Moodle
45
SVRS
4.3
CVSSv3
0.00229
EPSS
A vulnerability was found in Moodle. Users with access to delete audiences from reports could delete audiences from other reports that they do not have permission to delete from.
TAGSNo tags available
VECTOR STRING
CVSS:3.1AV:NAC:LPR:LUI:NS:UC:NI:LA:N
PUBLICATION DATE2024-11-18
LAST MODIFIED2024-11-18
SOCRadarAI Insight

Description

CVE-2024-48898 is a vulnerability found in Moodle, an open-source learning management system. This vulnerability allows users with the ability to delete audiences from reports to potentially delete audiences from other reports that they do not have permission to delete from. This unauthorized deletion could impact data integrity and system security. While the CVSS score is 6.5, the SOCRadar Vulnerability Risk Score (SVRS) is 42, signifying a moderate risk requiring attention.

Key Insights

  • Impact: This vulnerability could potentially lead to data loss and unauthorized modifications of reports, affecting the integrity of information presented within Moodle.
  • Exploitability: The vulnerability requires a user with the ability to delete audiences from reports, potentially making it easier for attackers with existing user accounts to exploit.
  • Moodle Versions: This vulnerability impacts multiple versions of Moodle. Organizations using Moodle should check their versions and update accordingly.
  • CWE: The vulnerability falls under CWE-862, which is a weakness related to inadequate authentication and authorization controls, indicating a potential flaw in the system's access management.

Mitigation Strategies

  • Patching: The most effective mitigation strategy is to promptly install the latest security updates released by Moodle.
  • Access Control Review: Conduct a thorough review of user permissions and access control configurations within Moodle, ensuring that only authorized users can delete audiences from reports.
  • Security Awareness Training: Educate users about the importance of secure practices and how to identify and report suspicious activities.
  • Monitoring: Implement robust security monitoring and logging to detect any unauthorized access or attempts to exploit this vulnerability.

Additional Information

For further information or to discuss this incident in more detail, please utilize the "Ask to Analyst" feature within SOCRadar, contact SOCRadar directly, or open a support ticket.

Deep CVE Analysis in Progress

The system is currently conducting an in-depth analysis of the selected CVE. This includes advanced correlation, vulnerability classification, and cross-referencing with real-time threat intelligence sources. Once the analysis is complete, the page will automatically update with enriched vulnerability data and actionable insights.

TypeIndicatorDate
IP
103.210.35.1222024-01-15Search on IOC Radar
IP
41.111.218.2402025-02-06Search on IOC Radar
IP
103.210.35.1822025-05-12Search on IOC Radar
IP
196.188.104.2212022-10-29Search on IOC Radar
IP
186.101.203.1172026-02-15Search on IOC Radar
IP
45.222.192.662026-06-01Search on IOC Radar
IP
72.167.150.2432026-04-30Search on IOC Radar
Show All 11 IOCs

No exploits found for this CVE

SOCRadar Logo

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence

Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.

CREATE FREE ACCOUNT
CVE Details
Access comprehensive CVE information instantly
Real-time Tracking
Subscribe to CVEs and get instant updates
Exploit Analysis
Monitor related APT groups and threats
IOC Tracking
Analyze and track CVE-related IOCs
CVE-2024-48898 | Moodle Report Audience access control (Nessus ID 261129)
vuldb.com2025-09-03
CVE-2024-48898 | Moodle Report Audience access control (Nessus ID 261129) | A vulnerability has been found in Moodle and classified as critical. This affects an unknown part of the component Report Audience Handler. The manipulation leads to improper access controls. This vulnerability is referenced as CVE-2024-48898. Remote exploitation of the attack is possible. No exploit is available.
vuldb.comrssforumnews
Show All News

No tweets found for this CVE

Configuration 1
TypeVendorProduct
AppMoodlemoodle
ReferenceLink
[email protected]https://bugzilla.redhat.com/show_bug.cgi?id=2318820
RHBZ#2318820https://bugzilla.redhat.com/show_bug.cgi?id=2318820
CWE IDCWE NameDescription
CWE-862Missing AuthorizationThe software does not perform an authorization check when an actor attempts to access a resource or perform an action.

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence Access