Weak Password Recovery Mechanism for Forgotten Password in Moodle
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2016-7038 |
| CWE-ID | CWE-640 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Moodle Web applications / Other software |
| Vendor | moodle.org |
Security Bulletin
This security bulletin contains one medium risk vulnerability.
1) Weak Password Recovery Mechanism for Forgotten Password
EUVDB-ID: #VU39808
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2016-7038
CWE-ID:
CWE-640 - Weak password recovery mechanism
Exploit availability: No
DescriptionThe vulnerability allows a remote non-authenticated attacker to read and manipulate data.
In Moodle 2.x and 3.x, web service tokens are not invalidated when the user password is changed or forced to be changed.
MitigationInstall update from vendor's website.
Vulnerable software versionsMoodle: 2.8 - 3.1.1
CPE2.3- cpe:2.3:a:moodle_org:moodle:2.8.12:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:2.9.7:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:3.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:moodle_org:moodle:3.1.1:*:*:*:*:*:*:*
https://www.securityfocus.com/bid/93174
https://moodle.org/mod/forum/discuss.php?d=339631
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
