CVE-2022-45149

Severity Score

5.4

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A vulnerability was found in Moodle which exists due to insufficient validation of the HTTP request origin in course redirect URL. A user's CSRF token was unnecessarily included in the URL when being redirected to a course they have just restored. A remote attacker can trick the victim to visit a specially crafted web page and perform arbitrary actions on behalf of the victim on the vulnerable website. This flaw allows an attacker to perform cross-site request forgery attacks.

Se encontró una vulnerabilidad en Moodle que existe debido a una validación insuficiente del origen de la solicitud HTTP en la URL de redireccionamiento del curso. El token CSRF de un usuario se incluyó innecesariamente en la URL cuando se le redirigió a un curso que acababa de restaurar. Un atacante remoto puede engañar a la víctima para que visite una página web especialmente manipulada y realizar acciones arbitrarias en nombre de la víctima en el sitio web vulnerable. Esta falla permite a un atacante realizar ataques de Cross-Site Request Forgery (CSRF).

*Credits: N/A

CVSS Scores

NISTv3.1 5.4

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2022-11-11 CVE Reserved
2022-11-23 CVE Published
2024-06-15 EPSS Updated
2024-08-03 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-352: Cross-Site Request Forgery (CSRF)

CAPEC

References (6)

URL	Tag	Source
http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-75862
https://bugzilla.redhat.com/show_bug.cgi?id=2142772
https://moodle.org/mod/forum/discuss.php?d=440769

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DHYIIAUXUBHMBEDYU7TYNZXEN2W2SA2	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/74SXNGA5RIWM7QNX7H3G7SYIQLP4UUGV	2023-11-07
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NLRJB5JNKK3VVBLV3NH3RI7COEDAXSAB	2023-11-07

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Moodle Search vendor "Moodle"		Moodle Search vendor "Moodle" for product "Moodle"				>= 3.9.0 < 3.9.18 Search vendor "Moodle" for product "Moodle" and version " >= 3.9.0 < 3.9.18"		-		Affected
Moodle Search vendor "Moodle"		Moodle Search vendor "Moodle" for product "Moodle"				>= 3.11.0 < 3.11.11 Search vendor "Moodle" for product "Moodle" and version " >= 3.11.0 < 3.11.11"		-		Affected
Moodle Search vendor "Moodle"		Moodle Search vendor "Moodle" for product "Moodle"				>= 4.0.0 < 4.0.5 Search vendor "Moodle" for product "Moodle" and version " >= 4.0.0 < 4.0.5"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				35 Search vendor "Fedoraproject" for product "Fedora" and version "35"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				36 Search vendor "Fedoraproject" for product "Fedora" and version "36"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				37 Search vendor "Fedoraproject" for product "Fedora" and version "37"		-		Affected