CVE-2024-38277 | Moodle up to 4.1.10/4.2.7/4.3.4/4.4 QR Login Key a key past its expiration date

Posted by Angelo Barbosa | Jun 19, 2024 | CVE

A vulnerability was found in Moodle up to 4.1.10/4.2.7/4.3.4/4.4. It has been rated as problematic. Affected by this issue is some unknown functionality of the component QR Login Key Handler. The manipulation leads to use of a key past its expiration date.

This vulnerability is handled as CVE-2024-38277. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-38277 | Moodle up to 4.1.10/4.2.7/4.3.4/4.4 QR Login Key a key past its expiration date

Related Posts

CVE-2024-10520 | WP Project Manager Plugin up to 2.6.14 on WordPress Task authorization

CVE-2024-37673 | Tessi Docubase Document Management 5.x filename cross site scripting

CVE-2024-43641 | Microsoft Windows up to Server 2025 Registry integer overflow

CVE-2024-46749 | Linux Kernel up to 6.6.50/6.10.9 Bluetooth btnxpuart_flush null pointer dereference (013dae4735d2/056e0cd381d5/c68bbf5e334b)