ГлавнаяУязвимости → CVE-2026-26046
7.2высокая

CVE-2026-26046

Описание

A vulnerability was found in a Moodle TeX filter administrative setting where insufficient sanitization of configuration input could allow command injection. On sites where the TeX filter is enabled and ImageMagick is installed, a maliciously crafted setting value entered by an administrator could result in unintended system command execution. While exploitation requires administrative privileges, successful compromise could affect the entire Moodle server.

Затрагиваемое ПО
Moodle Moodle
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://access.redhat.com/security/cve/CVE-2026-26046https://bugzilla.redhat.com/show_bug.cgi?id=2440903