Vulnerability Details CVE-2025-26526
Separate Groups mode restrictions were not factored into permission
checks before allowing viewing or deletion of responses in Feedback
activities.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.6%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2025-26526
-
cpe:2.3:a:moodle:moodle:4.1.0
-
cpe:2.3:a:moodle:moodle:4.1.1
-
cpe:2.3:a:moodle:moodle:4.1.10
-
cpe:2.3:a:moodle:moodle:4.1.11
-
cpe:2.3:a:moodle:moodle:4.1.12
-
cpe:2.3:a:moodle:moodle:4.1.13
-
cpe:2.3:a:moodle:moodle:4.1.14
-
cpe:2.3:a:moodle:moodle:4.1.15
-
cpe:2.3:a:moodle:moodle:4.1.3
-
cpe:2.3:a:moodle:moodle:4.1.4
-
cpe:2.3:a:moodle:moodle:4.1.5
-
cpe:2.3:a:moodle:moodle:4.1.6
-
cpe:2.3:a:moodle:moodle:4.1.8
-
cpe:2.3:a:moodle:moodle:4.1.9
-
cpe:2.3:a:moodle:moodle:4.3.0
-
cpe:2.3:a:moodle:moodle:4.3.1
-
cpe:2.3:a:moodle:moodle:4.3.2
-
cpe:2.3:a:moodle:moodle:4.3.3
-
cpe:2.3:a:moodle:moodle:4.3.4
-
cpe:2.3:a:moodle:moodle:4.3.5
-
cpe:2.3:a:moodle:moodle:4.3.6
-
cpe:2.3:a:moodle:moodle:4.3.7
-
cpe:2.3:a:moodle:moodle:4.3.8
-
cpe:2.3:a:moodle:moodle:4.3.9
-
cpe:2.3:a:moodle:moodle:4.4.0
-
cpe:2.3:a:moodle:moodle:4.4.1
-
cpe:2.3:a:moodle:moodle:4.4.2
-
cpe:2.3:a:moodle:moodle:4.4.3
-
cpe:2.3:a:moodle:moodle:4.4.4
-
cpe:2.3:a:moodle:moodle:4.4.5
-
cpe:2.3:a:moodle:moodle:4.5.0
-
cpe:2.3:a:moodle:moodle:4.5.1