Vulnerabilities > CVE-2021-43129 - Unspecified vulnerability in D2L Brightspace 20.21.7

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

d2l

NVD

Published: 2022-04-19

Updated: 2023-08-08

Summary

A bypass exists for Desire2Learn/D2L Brightspace’s “Disable Right Click” option in the quizzing feature, which allows a quiz-taker to access print and copy functionality via the browser’s right click menu even when “Disable Right Click” is enabled on the quiz.

Vulnerable Configurations

Part	Description	Count
Application	D2L D2L Brightspace 20.21.7	1

References

https://github.com/Skotizo/CVE-2021-43129
https://www.d2l.com/learning-management-system-lms/
https://community.brightspace.com/s/article/retirement-notice-disable-right-click