Upcoming Security Fix for edx-platform on 2024-05-17

A security patch for openedx/edx-platform will be added to the Quince release, the Redwood release candidate branch, and to the current github master branch around 2024-05-17T14:00:00Z.

It will fix one security defect with a “high” CVSS 3.1 severity rating .

Details will be published here after release: GitHub security advisory .

2 Likes

The security fix has been published.

Advisory: Privilege re-escalation in Studio after staff access removed · Advisory · openedx/edx-platform · GitHub

Commit added to:

1 Like