CVE-2021-23261

MEDIUM

Craftercms Crafter CMS 3.1.0 through 3.1.13 - Denial of Service via Configuration Override

Title source: llm

Authenticated administrators may override the system configuration file and cause a denial of service.

CVSS v3 4.5

EPSS 0.0037

EPSS Percentile 59.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H

CWE

CWE-703

Status published

Products (1)

craftercms/crafter_cms 3.1.0 - 3.1.13

Published Dec 02, 2021

Tracked Since Feb 18, 2026