Moodle Exposure of Resource to Wrong Sphere Vulnerability - CVE-2022-40316 - Vulnerability Database

Moodle Exposure of Resource to Wrong Sphere Vulnerability - CVE-2022-40316

Medium

Reference: CVE-2022-40316

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-40316

Title: Moodle Exposure of Resource to Wrong Sphere Vulnerability

Overview:

The H5P activity attempts report did not filter by groups which in separate groups mode could reveal information to non-editing teachers about attempts/users in groups they should not have access to.