CVE-2021-32476
CVE-2021-32476
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.0%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
11 Mar 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A denial-of-service risk was identified in the draft files area, due to it not respecting user file upload limits. Moodle versions 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8, 3.5 to 3.5.17 and earlier unsupported versions are affected.
Affected products
n/a · moodleWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →