CVE-2024-43429

{"id": "CVE-2024-43429", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "patrick@puiterwijk.org", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2024-11-11T13:15:03.880", "references": [{"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304257", "source": "patrick@puiterwijk.org"}, {"url": "https://moodle.org/mod/forum/discuss.php?d=461197", "source": "patrick@puiterwijk.org"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-312"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in moodle. Some hidden user profile fields are visible in gradebook reports, which could result in users without the \"view hidden user fields\" capability having access to the information."}, {"lang": "es", "value": "Se encontr\u00f3 una falla en Moodle. Algunos campos de perfil de usuario ocultos son visibles en los informes del libro de calificaciones, lo que podr\u00eda provocar que los usuarios sin la capacidad de \"ver campos de usuario ocultos\" tengan acceso a la informaci\u00f3n."}], "lastModified": "2024-11-12T20:35:11.370", "sourceIdentifier": "patrick@puiterwijk.org"}