Critical severityNVD Advisory· Published Nov 22, 2021· Updated Aug 3, 2024
CVE-2021-3943
CVE-2021-3943
Description
A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, 3.9 to 3.9.10 and earlier unsupported versions. A remote code execution risk when restoring backup files was identified.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
moodle/moodlePackagist | >= 3.11, < 3.11.4 | 3.11.4 |
moodle/moodlePackagist | >= 3.10, < 3.10.8 | 3.10.8 |
moodle/moodlePackagist | >= 3.9, < 3.9.11 | 3.9.11 |
Affected products
3- Moodle/Moodledescription
- osv-coords2 versions
>= 3.9.0, < 3.9.11+ 1 more
- (no CPE)range: >= 3.9.0, < 3.9.11
- (no CPE)range: >= 3.11, < 3.11.4
Patches
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
5- github.com/advisories/GHSA-8jhp-2gcr-qw96ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-3943ghsaADVISORY
- bugzilla.redhat.com/show_bug.cgighsax_refsource_MISCWEB
- github.com/moodle/moodle/commit/58e8ad852f9e75c8158e5bee02c273383f7d9865ghsaWEB
- moodle.org/mod/forum/discuss.phpghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.