PT-2026-21331 · Openshift · Openshift

Mdavistffhrtporg

·

Published

2026-02-21

·

Updated

2026-02-21

·

CVE-2026-27189

CVSS v3.1

6.6

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L
Name of the Vulnerable Software and Affected Versions OpenSift versions 1.1.2-alpha and below
Description OpenSift, an AI study tool, uses non-atomic and insufficiently synchronized local JSON persistence flows in versions 1.1.2-alpha and earlier. This can lead to concurrent operations losing updates or corrupting local state across sessions, impacting study, quiz, flashcard, wellness, and authentication stores.
Recommendations Update to version 1.1.3-alpha or later.

Exploit

Fix

Time Of Check To Time Of Use

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-367CWE-362

Related Identifiers

CVE-2026-27189
GHSA-3PMP-J953-WHXQ

Affected Products

Openshift