Vulnerabilities > CVE-2021-3964 - Authorization Bypass Through User-Controlled Key vulnerability in Elgg

047910
CVSS 5.9 - MEDIUM
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
high complexity
elgg
CWE-639
NVD
Published: 2021-12-01
Updated: 2021-12-02

Summary

elgg is vulnerable to Authorization Bypass Through User-Controlled Key

Vulnerable Configurations

Part Description Count
Application
Elgg
195

Common Weakness Enumeration (CWE)

References