Some database module web services allowed students to add entries within groups they did not belong to.
Versions affected: 3.9 to 3.9.2, 3.8 to 3.8.5, 3.7 to 3.7.8, 3.5 to 3.5.14 and earlier unsupported versions
Created moodle tracking bugs for this issue:
Affects: epel-all [bug 1899538]
Affects: fedora-all [bug 1899539]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.