CVE-2021-43129

EUVD-2021-30078
A bypass exists for Desire2Learn/D2L Brightspace’s “Disable Right Click” option in the quizzing feature, which allows a quiz-taker to access print and copy functionality via the browser’s right click menu even when “Disable Right Click” is enabled on the quiz.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
Affected Products (NVD)
VendorProductVersion
d2lbrightspace
20.21.7
𝑥
= Vulnerable software versions
References
https://community.brightspace.com/s/article/retirement-notice-disable-right-click
https://github.com/Skotizo/CVE-2021-43129
https://www.d2l.com/learning-management-system-lms/
https://community.brightspace.com/s/article/retirement-notice-disable-right-click
https://github.com/Skotizo/CVE-2021-43129
https://www.d2l.com/learning-management-system-lms/