CVE-2024-43428

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') (CWE-74)

Published: Nov 7, 2024 / Updated: 12d ago

010
CVSS 7.7EPSS 0.04%High
CVE info copied to clipboard

Summary

To address a cache poisoning risk in Moodle, additional validation for local storage was required. This vulnerability is related to Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection').

Impact

This vulnerability could potentially allow an attacker to perform cache poisoning attacks on Moodle installations. Cache poisoning could lead to serving malicious content to users, potentially resulting in data theft, unauthorized access, or other malicious activities depending on the nature of the poisoned cache.

Exploitation

There is no evidence that a public proof-of-concept exists. There is no evidence of proof of exploitation at the moment.

Patch

A patch is available. The vulnerability was addressed on November 7, 2024, as indicated by the patch details from the Github Advisory.

Mitigation

1. Update Moodle to the latest patched version as soon as possible. 2. Implement proper input validation and output encoding practices. 3. Regularly audit and monitor cache behavior and content. 4. Consider implementing additional security controls such as Web Application Firewalls (WAF) to help mitigate injection attacks. 5. Conduct regular security assessments and penetration testing to identify and address similar vulnerabilities.

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Timeline

First Article

Feedly found the first article mentioning CVE-2024-43428. See article

Aug 20, 2024 at 5:53 AM / Security announcements
CVSS Estimate

Feedly estimated the CVSS score as HIGH

Aug 20, 2024 at 5:53 AM
Detection in Vulnerability Scanners

Detection for the vulnerability has been added to Qualys (731876)

Oct 30, 2024 at 7:53 AM
CVE Assignment

NVD published the first details for CVE-2024-43428

Nov 7, 2024 at 2:15 PM
CVSS

A CVSS base score of 7.7 has been assigned.

Nov 7, 2024 at 2:20 PM / nvd
CVSS Estimate

Feedly estimated the CVSS score as MEDIUM

Nov 7, 2024 at 2:41 PM
Vendor Advisory

GitHub Advisories released a security advisory.

Nov 7, 2024 at 3:31 PM
CVSS

A CVSS base score of 7.7 has been assigned.

Nov 8, 2024 at 7:06 PM / nvd
EPSS

EPSS Score was set to: 0.04% (Percentile: 10%)

Nov 8, 2024 at 7:06 PM
Static CVE Timeline Graph

Affected Systems

Moodle/moodle
+null more

Patches

Github Advisory
+null more

Links to Mitre Att&cks

T1562.003: Impair Command History Logging
+null more

Attack Patterns

CAPEC-10: Buffer Overflow via Environment Variables
+null more

Vendor Advisory

[GHSA-2r9m-wg35-rfvc] Moodle vulnerable to cache poisoning via injection into storage
GitHub Security Advisory: GHSA-2r9m-wg35-rfvc Release Date: 2024-11-07 Update Date: 2024-11-07 Severity: Moderate CVE-2024-43428 Package Information Package: moodle/moodle Affected Versions: Patched Versions: 4.1.12 Description To address a cache poisoning risk in Moodle, additional validation for local storage was required. References https://nvd.nist.gov/vuln/detail/CVE-2024-43428 https://bugzilla.redhat.com/show_bug.cgi?id=2304256 https://moodle.org/mod/forum/discuss.php?d=461196 http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81718

News

CVE Alert: CVE-2024-43428 - https://www. redpacketsecurity.com/cve_aler t_cve-2024-43428/ # OSINT # ThreatIntel # CyberSecurity # cve_2024_43428
[GHSA-2r9m-wg35-rfvc] Moodle vulnerable to cache poisoning via injection into storage
GitHub Security Advisory: GHSA-2r9m-wg35-rfvc Release Date: 2024-11-07 Update Date: 2024-11-07 Severity: Moderate CVE-2024-43428 Package Information Package: moodle/moodle Affected Versions: Patched Versions: 4.1.12 Description To address a cache poisoning risk in Moodle, additional validation for local storage was required. References https://nvd.nist.gov/vuln/detail/CVE-2024-43428 https://bugzilla.redhat.com/show_bug.cgi?id=2304256 https://moodle.org/mod/forum/discuss.php?d=461196 http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-81718
NA - CVE-2024-43428 - To address a cache poisoning risk in Moodle,...
To address a cache poisoning risk in Moodle, additional validation for local storage was required.
CVE-2024-43428
High Severity Description To address a cache poisoning risk in Moodle, additional validation for local storage was required. Read more at https://www.tenable.com/cve/CVE-2024-43428
CVE-2024-43428
To address a cache poisoning risk in Moodle, additional validation for local storage was...
See 7 more articles and social media posts

CVSS V3.1

Attack Vector:Local
Attack Complexity:Low
Privileges Required:None
User Interaction:None
Scope:Unchanged
Confidentiality:High
Integrity:High
Availability Impact:None

Categories

Be the first to know about critical vulnerabilities

Collect, analyze, and share vulnerability reports faster using AI