Msa-24-0001: denial of service risk in file picker unzip functionality
CVE-2024-25978

7.5HIGH

Key Information:

Vendor: Fedora
Status: Moodle; 4.2.6; Fedora; Extra Packages For Enterprise Linux
Vendor: CVE Published:; 19 February 2024

What is CVE-2024-25978?

A vulnerability has been identified in Moodle's file picker that allows for a denial of service condition due to insufficient checks on file sizes during the unzip functionality. This flaw can potentially be exploited by attackers to disrupt service availability by submitting files that exceed allowed limits, thereby causing the application to become unresponsive. Users of affected versions should prioritize updates to mitigate associated risks.

Affected Version(s)

4.2.6 and 4.1.9

moodle 4.3.3

References

http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=...

https://bugzilla.redhat.com/show_bug.cgi?id=2264074

issue-trackingx_refsource_REDHAT

https://moodle.org/mod/forum/discuss.php?d=455634

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 19, 2024
Vulnerability Reserved
Feb 13, 2024

Credit

Red Hat would like to thank Sam Ezeh for reporting this issue.

Fedora

What is CVE-2024-25978?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit