{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"state":"PUBLISHED","cveId":"CVE-2020-25699","assignerOrgId":"53f830b8-0a3f-465b-8143-3b8a9948e749","assignerShortName":"redhat","dateUpdated":"2024-08-04T15:40:36.678Z","dateReserved":"2020-09-16T00:00:00.000Z","datePublished":"2020-11-19T00:00:00.000Z"},"containers":{"cna":{"providerMetadata":{"orgId":"53f830b8-0a3f-465b-8143-3b8a9948e749","shortName":"redhat","dateUpdated":"2022-10-07T00:00:00.000Z"},"descriptions":[{"lang":"en","value":"In moodle, insufficient capability checks could lead to users with the ability to course restore adding additional capabilities to roles within that course. Versions affected: 3.9 to 3.9.2, 3.8 to 3.8.5, 3.7 to 3.7.8, 3.5 to 3.5.14 and earlier unsupported versions. This is fixed in moodle 3.9.3, 3.8.6, 3.7.9, 3.5.15, and 3.10."}],"affected":[{"vendor":"n/a","product":"moodle","versions":[{"version":"Fixed in 3.9.3","status":"affected"},{"version":"Fixed in 3.8.6","status":"affected"},{"version":"Fixed in 3.7.9","status":"affected"},{"version":"Fixed in 3.5.15","status":"affected"},{"version":"Fixed in 3.10","status":"affected"}]}],"references":[{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1895425"},{"url":"https://moodle.org/mod/forum/discuss.php?d=413936"},{"name":"FEDORA-2020-304aa2c365","tags":["vendor-advisory"],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B55KXBVAT45MDASJ3EK6VIGQOYGJ4NH6/"},{"name":"FEDORA-2020-db73e37548","tags":["vendor-advisory"],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4NNFCHPPHRJNJROIX6SYMHOC6HMKP3GU/"}],"problemTypes":[{"descriptions":[{"type":"CWE","lang":"en","description":"CWE-863","cweId":"CWE-863"}]}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-04T15:40:36.678Z"},"title":"CVE Program Container","references":[{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1895425","tags":["x_transferred"]},{"url":"https://moodle.org/mod/forum/discuss.php?d=413936","tags":["x_transferred"]},{"name":"FEDORA-2020-304aa2c365","tags":["vendor-advisory","x_transferred"],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B55KXBVAT45MDASJ3EK6VIGQOYGJ4NH6/"},{"name":"FEDORA-2020-db73e37548","tags":["vendor-advisory","x_transferred"],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4NNFCHPPHRJNJROIX6SYMHOC6HMKP3GU/"}]}]}}