CVE-2021-32476

CVE-2021-32476

Vendor N/A
Product moodle
Weakness CWE-770 · Uncontrolled resource consumption
Published March 11, 2022
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

A denial-of-service risk was identified in the draft files area, due to it not respecting user file upload limits. Moodle versions 3.10 to 3.10.3, 3.9 to 3.9.6, 3.8 to 3.8.8, 3.5 to 3.5.17 and earlier unsupported versions are affected.

Key dates

02Disclosure timeline

March 11, 2022 CVE published
August 3, 2024 Record updated