CVE-2024-43427
LOWDescription
A flaw was found in moodle. When creating an export of site administration presets, some sensitive secrets and keys are not being excluded from the export, which could result in them unintentionally being leaked if the presets are shared with a third party.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| moodle | moodle |
| moodle | moodle |
| moodle | moodle |
| moodle | moodle |
References
Advisories & Patches
Other References
Frequently Asked Questions
What is CVE-2024-43427? +
How severe is CVE-2024-43427? +
What products are affected by CVE-2024-43427? +
How do I check if I'm vulnerable to CVE-2024-43427? +
Related Vulnerabilities
Insecure information storage vulnerability in NTFS Tools version 3.5.1. Exploitation of this vulnerability could allow an attacker to know the …
The vulnerability allows a malicious low-privileged PAM user to access information about other PAM users and their group memberships.
Insecure Storage of Sensitive Information vulnerability in Calix GigaCenter ONT (Quantenna SoC modules) allows admin access to the web interface.This …
Insecure Storage of Sensitive Information vulnerability in MeetMe on iOS, Android allows Retrieve Embedded Sensitive Data. This issue affects MeetMe: …
HAX CMS helps manage microsite universe with PHP or NodeJs backends. Prior to version 26.0.0, an attack chain utilizing Stored …
The TNC Toolbox: Web Performance plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and …