Description Insufficient capability checks made it possible for teachers to download users outside of their courses. Remediation References CVE-2021-40692 Related Vulnerabilities MySQL CVE-2014-4240 Vulnerability (CVE-2014-4240) Oracle JRE CVE-2013-5790 Vulnerability (CVE-2013-5790) PHP Improper Certificate Validation Vulnerability (CVE-2015-3152) WordPress Plugin SAML SP Single Sign On-SSO login Unspecified Vulnerability (4.8.75) Jetty Observable Discrepancy Vulnerability (CVE-2017-9735) Severity Medium Classification CVE-2021-40692 CWE-863 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N Tags Missing Update Known Vulnerabilities