CVE-2021-43821
unknown
CVSS v3
—
CVSS v2
—
VIR risk
—
Description
Files Accessible to External Parties in Opencast
Predictions
Exploit likelihood
30%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| Maven | org.opencastproject:opencast-ingest-service-impl | <10.6 | 10.6 |
References
- https://github.com/opencast/opencast/security/advisories/GHSA-59g4-hpg3-3gcp
- https://nvd.nist.gov/vuln/detail/CVE-2021-43821
- https://github.com/opencast/opencast/commit/65c46b9d3e8f045c544881059923134571897764
- https://github.com/opencast/opencast
- https://github.com/opencast/opencast/blob/69952463971cf578363e3b97d8edaf334ff51253/modules/ingest-service-impl/src/main/java/org/opencastproject/ingest/impl/IngestServiceImpl.java#L1587
- https://mvnrepository.com/artifact/org.opencastproject/opencast-ingest-service-impl
Verify integrity in audit chain (admin only). AS-IS.