← Zuruck zu CVEs
CVE-2026-41900
HIGH8.8
Beschreibung
OpenLearnX is an open-source, decentralized learning and assessment platform. Prior to version 2.0.3, a remote code execution (RCE) vulnerability was identified in the OpenLearnX code execution environment, allowing sandbox escape and arbitrary command execution. This issue has been patched in version 2.0.3.
CVE Details
CVSS v3.1 Bewertung8.8
SchweregradHIGH
CVSS VektorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AngriffsvektorNETWORK
KomplexitatLOW
Erforderliche PrivilegienLOW
BenutzerinteraktionNONE
Veroffentlicht5/8/2026
Zuletzt geandert5/8/2026
Quellenvd
Honeypot-Sichtungen0
Schwachen (CWE)
CWE-78CWE-94CWE-250CWE-284CWE-693
Referenzen
https://github.com/th30d4y/OpenLearnX/commit/14765d7d1856d564747c55c5412e2f38feab079e(security-advisories@github.com)
https://github.com/th30d4y/OpenLearnX/releases/tag/v2.0.3-security-fix(security-advisories@github.com)
https://github.com/th30d4y/OpenLearnX/security/advisories/GHSA-8h25-q488-4hxw(security-advisories@github.com)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.