VYPR
Moderate severityNVD Advisory· Published Jan 21, 2022· Updated Aug 4, 2024

CVE-2021-40694

CVE-2021-40694

Description

Insufficient escaping of the LaTeX preamble made it possible for site administrators to read files available to the HTTP server system account.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
moodle/moodlePackagist
>= 3.9, < 3.9.103.9.10
moodle/moodlePackagist
>= 3.10, < 3.10.73.10.7
moodle/moodlePackagist
>= 3.11, < 3.11.33.11.3

Affected products

3

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.