VYPR
Medium severity4.3NVD Advisory· Published Jan 18, 2022· Updated Jun 17, 2026

CVE-2021-44836

CVE-2021-44836

Description

An issue was discovered in Delta RM 1.2. The /risque/risque/workflow/reset endpoint is lacking access controls, and it is possible for an unprivileged user to reopen a risk with a POST request, using the risqueID parameter to identify the risk to be re-opened.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Delta RM/Delta RMdescription
  • Totara/Rmllm-fuzzy
    Range: <= 1.2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.