CVE-2025-3625

high

Description

A security vulnerability was discovered in Moodle that can allow hackers to gain access to sensitive information about students and prevent them from logging into their accounts, even after they had completed two-factor authentication (2FA).

References

https://bugzilla.redhat.com/show_bug.cgi?id=2359690

https://access.redhat.com/security/cve/CVE-2025-3625

Details

Source: Mitre, NVD

Published: 2025-04-25

Updated: 2025-04-29

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:C

Severity: High

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H