Description

A flaw was found in moodle where logic used to count failed login attempts could result in the account lockout threshold being bypassed.

Remediation

References

CVE-2022-30600

Related Vulnerabilities

Joomla Other Vulnerability (CVE-2006-7010)

Microsoft SQL Server CVE-2023-21713 Vulnerability (CVE-2023-21713)

WordPress Plugin Essential Real Estate Cross-Site Scripting (1.7.0)

Envoy Proxy Reachable Assertion Vulnerability (CVE-2021-29258)

WordPress Plugin Thrive Ultimatum Security Bypass (2.3.9.3)

Severity

Critical

Classification

CVE-2022-30600 CWE-682 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities