CVE-2021-32476

Published: Mar 11, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

A denial-of-service risk was identified in the draft files area, due to it not respecting user file upload limits. Moodle versions 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8, 3.5 to 3.5.17 and earlier unsupported versions are affected.

Vendor	Product	Versions
n/a	moodle	affected `3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8, 3.5 to 3.5.17`

Weaknesses (CWE)

CWE-770

References

https://moodle.org/mod/forum/discuss.php?d=422310

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-32476

Description

Affected Products

Weaknesses (CWE)

References