CVE-2021-32475
CVE-2021-32475
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.6%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
11 Mar 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
ID numbers displayed in the quiz grading report required additional sanitizing to prevent a stored XSS risk. Moodle 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8, 3.5 to 3.5.17 and earlier unsupported versions are affected.
Affected products
n/a · moodleWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →