VulnerableCode Vulnerability Details - VCID-a66j-sth4-d3dc

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-a66j-sth4-d3dc

Essentials
Severities (3)
References (4)
Severity details (3)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-a66j-sth4-d3dc
Aliases	GHSA-cfcv-q4qq-2ph4 GMS-2021-117
Summary	CKEditor 4 vulnerabilities in versions <4.16.1 Details see: https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-m94c-37g6-cjhc ( CVE-2021-37695 ) https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-6226-h7ff-ch6c ( CVE-2021-32808 ) https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-7889-rm5j-hpgg ( CVE-2021-32809 ) Patch: https://github.com/pimcore/pimcore/pull/10032
Status	Published
Exploitability	None
Weighted Severity	None
Risk	None
Affected and Fixed Packages	Package Details

Weaknesses (2)

CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
generic_textual	MODERATE	https://github.com/pimcore/pimcore
generic_textual	MODERATE	https://github.com/pimcore/pimcore/commit/0d2ce3b1db4ac40646cee5104115767505760b6a
generic_textual	MODERATE	https://github.com/pimcore/pimcore/security/advisories/GHSA-cfcv-q4qq-2ph4

Reference id	Reference type	URL
		https://github.com/pimcore/pimcore
		https://github.com/pimcore/pimcore/commit/0d2ce3b1db4ac40646cee5104115767505760b6a
GHSA-cfcv-q4qq-2ph4		https://github.com/advisories/GHSA-cfcv-q4qq-2ph4
GHSA-cfcv-q4qq-2ph4		https://github.com/pimcore/pimcore/security/advisories/GHSA-cfcv-q4qq-2ph4

No exploits are available.

No EPSS data available for this vulnerability.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-02T04:39:38.780599+00:00	GitLab Importer	Import	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pimcore/pimcore/GMS-2021-117.yml	38.6.0