CVE-2023-5550
Moodle: rce due to lfi risk in some misconfigured shared hosting environments
Severity Score
9.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Attend
*SSVC
Descriptions
In a shared hosting environment that has been misconfigured to allow access to other users' content, a Moodle user who also has direct access to the web server outside of the Moodle webroot could utilise a local file include to achieve remote code execution.
En un entorno de alojamiento compartido que ha sido mal configurado para permitir el acceso al contenido de otros usuarios, un usuario de Moodle que también tiene acceso directo al servidor web fuera del root web de Moodle podría utilizar un archivo local incluido para lograr la ejecución remota de código.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Attend
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2023-10-12 CVE Reserved
- 2023-11-09 CVE Published
- 2024-07-30 EPSS Updated
- 2024-08-02 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-94: Improper Control of Generation of Code ('Code Injection')
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| https://bugzilla.redhat.com/show_bug.cgi?id=2243452 | Issue Tracking |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-72249 | 2023-11-17 | |
| https://moodle.org/mod/forum/discuss.php?d=451591 | 2023-11-17 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Moodle Search vendor "Moodle" | Moodle Search vendor "Moodle" for product "Moodle" | < 3.9.24 Search vendor "Moodle" for product "Moodle" and version " < 3.9.24" | - |
Affected
| ||||||
| Moodle Search vendor "Moodle" | Moodle Search vendor "Moodle" for product "Moodle" | >= 3.11.0 < 3.11.17 Search vendor "Moodle" for product "Moodle" and version " >= 3.11.0 < 3.11.17" | - |
Affected
| ||||||
| Moodle Search vendor "Moodle" | Moodle Search vendor "Moodle" for product "Moodle" | >= 4.0.0 < 4.0.11 Search vendor "Moodle" for product "Moodle" and version " >= 4.0.0 < 4.0.11" | - |
Affected
| ||||||
| Moodle Search vendor "Moodle" | Moodle Search vendor "Moodle" for product "Moodle" | >= 4.1.0 < 4.1.6 Search vendor "Moodle" for product "Moodle" and version " >= 4.1.0 < 4.1.6" | - |
Affected
| ||||||
| Moodle Search vendor "Moodle" | Moodle Search vendor "Moodle" for product "Moodle" | >= 4.2.0 < 4.2.3 Search vendor "Moodle" for product "Moodle" and version " >= 4.2.0 < 4.2.3" | - |
Affected
| ||||||
| Fedoraproject Search vendor "Fedoraproject" | Extra Packages For Enterprise Linux Search vendor "Fedoraproject" for product "Extra Packages For Enterprise Linux" | 7.0 Search vendor "Fedoraproject" for product "Extra Packages For Enterprise Linux" and version "7.0" | - |
Affected
| ||||||
| Fedoraproject Search vendor "Fedoraproject" | Fedora Search vendor "Fedoraproject" for product "Fedora" | 38 Search vendor "Fedoraproject" for product "Fedora" and version "38" | - |
Affected
| ||||||