Blind SSRF Vulnerability in Moodle Affecting MyBackpack Functionality
CVE-2019-3809

6.5MEDIUM

Key Information:

Vendor: [unknown]
Status: Moodle
Vendor: CVE Published:; 25 March 2019

What is CVE-2019-3809?

A security flaw exists in Moodle's mybackpack feature, present in versions 3.1 to 3.1.15 and earlier unsupported versions, that allows users to set arbitrary URLs for badges. This functionality should only be able to set URLs restricted to the Mozilla Open Badges backpack URL. As a result, this flaw enables blind Server-Side Request Forgery (SSRF) attacks, where attackers can exploit the vulnerability to make unauthorized requests within the server's network.

Affected Version(s)

moodle 3.1.16

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3809

x_refsource_CONFIRM

https://moodle.org/mod/forum/discuss.php?d=381229#p1536766

x_refsource_CONFIRM

http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=...

x_refsource_CONFIRM

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 25, 2019
Vulnerability Reserved
Jan 3, 2019

[unknown]

What is CVE-2019-3809?

Affected Version(s)

References

CVSS V3.1

Timeline