Unrated severityNVD Advisory· Published Nov 3, 2021· Updated Aug 4, 2024
CVE-2021-40849
CVE-2021-40849
Description
In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, the account associated with a web services token is vulnerable to being exploited and logged into, resulting in information disclosure (at a minimum) and often escalation of privileges.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Mahara/Maharadescription
- Range: < 20.04.5, < 20.10.3, < 21.04.2, < 21.10.0
Patches
Vulnerability mechanics
References
2- bugs.launchpad.net/mahara/+bug/1930469mitrex_refsource_MISC
- mahara.org/interaction/forum/topic.phpmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.