Security Flaw in Moodle by Moodle Pty Ltd
CVE-2025-3625

Currently unrated

Key Information:

Vendor: Moodle Pty Ltd
Status
Vendor: CVE Published:; 25 April 2025

Summary

A security vulnerability has been identified in Moodle, which could allow unauthorized access to sensitive student information. This vulnerability may also prevent users from successfully logging into their accounts even after passing two-factor authentication. This highlights critical concerns regarding the integrity of user data and the effectiveness of existing security measures.

References

https://access.redhat.com/security/cve/CVE-2025-3625

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2359690

issue-trackingx_refsource_REDHAT

Timeline

Vulnerability published
Apr 25, 2025
Vulnerability Reserved
Apr 15, 2025

Credit

Red Hat would like to thank vi22 for reporting this issue.