What is CVE-2019-14829?

CVE-2019-14829 is a vulnerability in Moodle, classified under CWE-573. Published 2021-03-19.

Is CVE-2019-14829 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Moodle

CVE-2019-14829

A vulnerability was found in Moodle affection 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions where activity creation capabilities were not correctly respected when selecting the activity to use for a course in si…

EPSS: 0.002 (36.0th percentile) — read the EPSS interpretation.

Affected products

N/a Moodle — versions 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions

Weakness classification (CWE)

CWE-573

Public proof-of-concept exploits

jev770/badmoodle-scan

References

moodle.org/mod/forum/discuss.php (x_refsource_MISC)
git.moodle.org/gw (x_refsource_MISC)

Frequently asked questions

What is CVE-2019-14829?: CVE-2019-14829 is a vulnerability in Moodle, classified under CWE-573. Published 2021-03-19.
Is CVE-2019-14829 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.