CVE-2021-43821
unknown
CVSS v3
โ
CVSS v4 NEW
โ
VIR risk
โ
Description
Files Accessible to External Parties in Opencast
Predictions
Exploit likelihood
30%
Patch ETA
โ
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ if you've already worked around this in production โ publish your fix to the community-verified tier.
โ Propose a mitigation on Community โ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| Maven | org.opencastproject:opencast-ingest-service-impl | <10.6 | 10.6 |
References
- https://github.com/opencast/opencast/security/advisories/GHSA-59g4-hpg3-3gcp
- https://nvd.nist.gov/vuln/detail/CVE-2021-43821
- https://github.com/opencast/opencast/commit/65c46b9d3e8f045c544881059923134571897764
- https://github.com/opencast/opencast
- https://github.com/opencast/opencast/blob/69952463971cf578363e3b97d8edaf334ff51253/modules/ingest-service-impl/src/main/java/org/opencastproject/ingest/impl/IngestServiceImpl.java#L1587
- https://mvnrepository.com/artifact/org.opencastproject/opencast-ingest-service-impl
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.