Bug 2277841 (CVE-2024-34005, MSA-24-0016) - CVE-2024-34005 moodle: authenticated LFI risk in some misconfigured shared hosting environments via modified mod_data backup
Summary: CVE-2024-34005 moodle: authenticated LFI risk in some misconfigured shared ho...
Keywords:
Status: NEW
Alias: CVE-2024-34005, MSA-24-0016
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 2282059 2282060
Blocks: 2277786
TreeView+ depends on / blocked
 
Reported: 2024-04-29 16:23 UTC by Robb Gatica
Modified: 2024-05-31 20:25 UTC (History)
1 user (show)

Fixed In Version: moodle 4.3.4, moodle 4.2.7, moodle 4.1.10
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description Robb Gatica 2024-04-29 16:23:46 UTC 
Description: 
In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user with
both access to restore database activity modules and direct access to the web server outside of the Moodle webroot could execute a local file include.

Issue summary: 
Authenticated LFI risk in some misconfigured shared hosting environments via modified mod_data backup

Severity/Risk: 
Serious

Versions affected: 
4.0 to 4.3.3, 4.2 to 4.2.6, 4.1 to 4.1.9 and earlier unsupported versions

Versions fixed: 
4.3.4, 4.2.7 and 4.1.10

Reported by: Vincent Schneider (cli-ish)
Issue no.: MDL-81267

Changes (master):
http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81267
Comment 1 Robb Gatica 2024-05-21 01:56:06 UTC 
Created moodle tracking bugs for this issue:

Affects: epel-all [bug 2282060]
Affects: fedora-all [bug 2282059]
Note You need to log in before you can comment on or make changes to this bug.