CVE-2024-47853 - Vulnerability Details

An issue was discovered in Mahara 23.04.8 and 24.04.4. Attackers may utilize escalation of privileges in certain cases when logging into Mahara with Learning Tools Interoperability (LTI).

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00024.

Key SSVC decision points have not yet been added.

Vendors	Products
Mahara	Mahara

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products
Mahara	Mahara

References

Link	Providers
https://mahara.org/interaction/forum/topic.php?id=9594
https://www.mahara.org

History

Wed, 27 Aug 2025 11:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Mahara Mahara mahara
Vendors & Products		Mahara Mahara mahara

Tue, 26 Aug 2025 14:15:00 +0000

Type	Values Removed	Values Added
Description		An issue was discovered in Mahara 23.04.8 and 24.04.4. Attackers may utilize escalation of privileges in certain cases when logging into Mahara with Learning Tools Interoperability (LTI).
References		https://mahara.org/interaction/forum/topic.php?id=9594 https://www.mahara.org

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2025-08-26T00:00:00.000Z

Updated: 2025-08-26T14:01:44.580Z

Reserved: 2024-10-04T00:00:00.000Z

Link: CVE-2024-47853

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-08-26T14:15:35.037

Modified: 2025-08-29T16:22:31.970

Link: CVE-2024-47853

Redhat

No data.

OpenCVE Enrichment

Updated: 2025-08-27T11:21:35Z

Metrics

Affected Vendors & Products

Metrics

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object