CVE-2021-43129

A bypass exists for Desire2Learn/D2L Brightspaces Disable Right Click option in the quizzing feature, which allows a quiz-taker to access print and copy functionality via the browsers right click menu even when Disable Right Click is enabled on the quiz.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
VendorProductVersion
d2lbrightspace
20.21.7
𝑥
= Vulnerable software versions
References
https://community.brightspace.com/s/article/retirement-notice-disable-right-click
https://github.com/Skotizo/CVE-2021-43129
https://www.d2l.com/learning-management-system-lms/
https://community.brightspace.com/s/article/retirement-notice-disable-right-click
https://github.com/Skotizo/CVE-2021-43129
https://www.d2l.com/learning-management-system-lms/