CVE Catalog

CVE-2026-49111

HighCVSS 8.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.25%

15th percentile — higher than 15% of all known CVEs

Summary

CVE-2026-49111 in ThemeGrill Masteriyo - LMS has an incorrect privilege assignment vulnerability that allows privilege escalation.

Risk Assessment

Privilege escalation may lead to unauthorized access to sensitive data or system functions, posing a significant security threat to the organization.

Recommendation

It is recommended to update to the latest version of Masteriyo - LMS to mitigate this vulnerability and conduct a user privilege audit.

Original NVD description (English source)

Incorrect Privilege Assignment vulnerability in ThemeGrill Masteriyo - LMS allows Privilege Escalation. This issue affects Masteriyo - LMS: from n/a through 2.2.0.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS