Security Advisory

CVE-2025-3640

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-25 14:43:02

Last updated 2025-04-28 16:47:19

Assigner fedora

State PUBLISHED

Description

A flaw was found in Moodle. Insufficient capability checks made it possible for a user enrolled in a course to access some details, such as the full name and profile image URL, of other users they did not have permission to access.

← Browse all CVEs View on cve.org ↗