CVE Catalog

CVE-2026-42743

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.14%

4th percentile - higher than 4% of all known CVEs

Summary

Masteriyo - LMS versions up to 2.1.8 contain a vulnerability in authentication that allows unauthorized access.

Risk Assessment

Organizations may be exposed to unauthorized actions within the system, potentially leading to data loss or privacy breaches.

Recommendation

It is recommended to upgrade to the latest version of Masteriyo - LMS to mitigate this vulnerability.

Original NVD description (English source)

Unauthenticated Broken Authentication in Masteriyo - LMS <= 2.1.8 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS