Moderate severityNVD Advisory· Published Jan 7, 2020· Updated Aug 5, 2024
CVE-2019-14879
CVE-2019-14879
Description
A vulnerability was found in Moodle versions 3.7.x before 3.7.3, 3.6.x before 3.6.7 and 3.5.x before 3.5.9. When a cohort role assignment was removed, the associated capabilities were not being revoked (where applicable).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
moodle/moodlePackagist | >= 3.7.0, < 3.7.3 | 3.7.3 |
moodle/moodlePackagist | >= 3.6.0, < 3.6.7 | 3.6.7 |
moodle/moodlePackagist | >= 3.5.0, < 3.5.9 | 3.5.9 |
Affected products
2- Moodle/Moodledescription
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-g9m2-c2x5-fr2vghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-14879ghsaADVISORY
- bugzilla.redhat.com/show_bug.cgighsax_refsource_CONFIRMWEB
- github.com/moodle/moodle/commit/7b5f4a62c18fd5bad6956828aade23e1f15b4be3ghsaWEB
News mentions
0No linked articles in our index yet.