A serious authentication flaw allowed attackers with valid credentials to bypass multi-factor authentication under certain conditions, potentially compromising user accounts.
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Thu, 23 Oct 2025 15:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 23 Oct 2025 11:45:00 +0000

Type Values Removed Values Added
Description A serious authentication flaw allowed attackers with valid credentials to bypass multi-factor authentication under certain conditions, potentially compromising user accounts.
Title Moodle: possible to bypass mfa
Weaknesses CWE-287
References

cve-icon MITRE

Status: PUBLISHED

Assigner: fedora

Published:

Updated: 2025-10-23T14:58:29.039Z

Reserved: 2025-10-13T10:12:30.925Z

Link: CVE-2025-62398

cve-icon Vulnrichment

Updated: 2025-10-23T14:58:07.632Z

cve-icon NVD

Status : Received

Published: 2025-10-23T12:15:32.430

Modified: 2025-10-23T15:15:47.367

Link: CVE-2025-62398

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.