CVE-2021-40694
Description
Insufficient escaping of the LaTeX preamble made it possible for site administrators to read files available to the HTTP server system account.
CWE
- (none)
Affected
- n/a / moodle — v=3.11 to 3.11.2, 3.10 to 3.10.6, 3.9 to 3.9.9 and earlier unsupported versions [affected]
CVSS
- (none)
References
- https://bugzilla.redhat.com/show_bug.cgi?id=2043421 x_refsource_MISC
Source
cvelistV5-main/cves/2021/40xxx/CVE-2021-40694.json