CVE-2024-38275
Published: 18 June 2024
Summary
CVE-2024-38275 is a high-severity Sensitive Information in Resource Not Removed Before Reuse (CWE-226) vulnerability in Moodle Moodle. Its CVSS base score is 7.5 (High).
Operationally, ranked in the top 26.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-2114
Vulnerability details
The cURL wrapper in Moodle retained the original request headers when following redirects, so HTTP authorization header information could be unintentionally sent in requests to redirect URLs.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Directly requires removal of sensitive data from resources before reuse or reallocation to another subject, eliminating residual information transfer.
Explicit retention limits and destruction rules reduce the persistence of sensitive information in reusable resources.
Periodic refresh or explicit deletion before reuse prevents sensitive information from remaining in a reusable resource.
Mandates sanitization of resources before they are released or discarded, preventing residual sensitive information from being recovered.
The eradication and cross-system identification steps ensure sensitive information is removed before resources are reused or further accessed.
Requiring sanitization of media prior to removal for off-site maintenance ensures sensitive information is removed before the resource is reused or accessed externally.
Procedures include sanitization, overwriting, and disposal requirements to remove sensitive data before media reuse or release.
Requiring sanitization prior to reuse directly ensures sensitive information is removed from resources before they are reused by others.