Account Lockout Logic Bypass in Moodle by Moodle HQ
CVE-2022-30600

9.8CRITICAL

Key Information:

Vendor

Moodle
Status
Moodle
Vendor
CVE Published:
18 May 2022

Badges

๐Ÿ‘พ Exploit Exists๐ŸŸก Public PoC

What is CVE-2022-30600?

A vulnerability in Moodle allows attackers to bypass the account lockout threshold by manipulating the logic used to count failed login attempts. This flaw could enable unauthorized access to accounts, increasing the risk of security breaches. It is crucial for users and administrators to apply the latest patches to mitigate this issue and secure their Moodle installations.

Affected Version(s)

moodle Affects : 4.0, 3.11 to 3.11.6, 3.10 to 3.10.10, 3.9 to 3.9.13 and earlier unsupported versions

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

POC-CVE-2022-30600
Created by Boonjune

References

https://moodle.org/mod/forum/discuss.php?d=434582
x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=2083613
x_refsource_MISC
http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=...
x_refsource_MISC

EPSS Score

6% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.