Security updates: Moodle learning platform vulnerable in many ways
Among other things, attackers can push malicious code into Moodle through software vulnerabilities. Updated versions are protected against this.
(Image: AFANASEV IVAN/Shutterstock.com)
In Germany, many universities use the Moodle learning platform. Due to several security vulnerabilities, educational institutions can fall victim to cyberattacks. Admins should install the available security updates promptly. There are currently no reports of ongoing attacks.
Compromising systems
The developers have published a total of 33 warnings in the security section of the Moodle website. An official classification of the threat level of the vulnerabilities is still pending. However, the developers have already classified several vulnerabilities as"serious".
Videos by heise
These include a vulnerability (CVE-2024-43425) that can be used to remotely access systems with malicious code. This usually leads to computers being completely compromised. Attackers can also view files that are actually sealed off (CVE-2024-43426) or carry out XSS attacks (CVE-2024-43439). It is currently not known how such attacks could work in detail.
By successfully exploiting vulnerabilities classified as"minor" risk by the Moodle developers, attackers can bypass access restrictions (CVE-2024-43430), for example.
Security updates
The developers assure us that they have closed the gaps in Moodle versions 4.1.12, 4.2.9, 4.3.6 and 4.4.2. All previous versions are said to be at risk. This includes some that are no longer in support and no longer receive security updates. At this point, admins need to upgrade in order to install a version that is protected against the attacks described.
(des)
