ГлавнаяУязвимости → CVE-2026-26045
7.2высокая

CVE-2026-26045

Описание

A flaw was identified in Moodle’s backup restore functionality where specially crafted backup files were not properly validated during processing. If a malicious backup file is restored, it could lead to unintended execution of server-side code. Since restore capabilities are typically available to privileged users, exploitation requires authenticated access. Successful exploitation could result in full compromise of the Moodle server.

Затрагиваемое ПО
Moodle Moodle
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://access.redhat.com/security/cve/CVE-2026-26045https://bugzilla.redhat.com/show_bug.cgi?id=2440901