First published: Sun Nov 06 2022(Updated: )
In Mahara 21.04 before 21.04.7, 21.10 before 21.10.5, 22.04 before 22.04.3, and 22.10 before 22.10.0, embedded images are accessible without a sufficient permission check under certain conditions.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Mahara Mahara | >=21.04.0<21.04.7 | |
Mahara Mahara | >=21.10.0<21.10.5 | |
Mahara Mahara | >=22.04.0<22.04.3 | |
Mahara Mahara | =22.10.0-rc1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-42707 is a vulnerability in Mahara versions 21.04, 21.10, 22.04, and 22.10 that allows unauthorized access to embedded images.
CVE-2022-42707 has a severity rating of 7.5, which is considered high.
CVE-2022-42707 affects Mahara versions 21.04, 21.10, 22.04, and 22.10.
Embedded images can be accessed without sufficient permission in Mahara versions 21.04 to 21.04.7, 21.10 to 21.10.5, 22.04 to 22.04.3, and 22.10.
Yes, you can find more information about CVE-2022-42707 at the following links: [Link 1](https://bugs.launchpad.net/mahara/+bug/1991157) and [Link 2](https://mahara.org/interaction/forum/topic.php?id=9199).