Vulnerability Details CVE-2022-40316
The H5P activity attempts report did not filter by groups, which in separate groups mode could reveal information to non-editing teachers about attempts/users in groups they should not have access to.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.4%
CVSS Severity
CVSS v3 Score 4.3
References
Products affected by CVE-2022-40316
-
cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:8.0
-
cpe:2.3:a:moodle:moodle:3.11.0
-
cpe:2.3:a:moodle:moodle:3.11.1
-
cpe:2.3:a:moodle:moodle:3.11.2
-
cpe:2.3:a:moodle:moodle:3.11.3
-
cpe:2.3:a:moodle:moodle:3.11.4
-
cpe:2.3:a:moodle:moodle:3.11.5
-
cpe:2.3:a:moodle:moodle:3.11.6
-
cpe:2.3:a:moodle:moodle:3.11.7
-
cpe:2.3:a:moodle:moodle:3.11.8
-
cpe:2.3:a:moodle:moodle:3.11.9
-
cpe:2.3:a:moodle:moodle:3.9.0
-
cpe:2.3:a:moodle:moodle:3.9.1
-
cpe:2.3:a:moodle:moodle:3.9.10
-
cpe:2.3:a:moodle:moodle:3.9.11
-
cpe:2.3:a:moodle:moodle:3.9.12
-
cpe:2.3:a:moodle:moodle:3.9.13
-
cpe:2.3:a:moodle:moodle:3.9.14
-
cpe:2.3:a:moodle:moodle:3.9.15
-
cpe:2.3:a:moodle:moodle:3.9.16
-
cpe:2.3:a:moodle:moodle:3.9.2
-
cpe:2.3:a:moodle:moodle:3.9.3
-
cpe:2.3:a:moodle:moodle:3.9.4
-
cpe:2.3:a:moodle:moodle:3.9.5
-
cpe:2.3:a:moodle:moodle:3.9.6
-
cpe:2.3:a:moodle:moodle:3.9.7
-
cpe:2.3:a:moodle:moodle:3.9.8
-
cpe:2.3:a:moodle:moodle:3.9.9
-
cpe:2.3:a:moodle:moodle:4.0.0
-
cpe:2.3:a:moodle:moodle:4.0.1
-
cpe:2.3:a:moodle:moodle:4.0.2
-
cpe:2.3:a:moodle:moodle:4.0.3
-
cpe:2.3:o:fedoraproject:fedora:35
-
cpe:2.3:o:fedoraproject:fedora:36