PT-2026-32024 · Unknown · Chamilo Lms
Published
2026-04-10
·
Updated
2026-04-10
·
CVE-2026-33710
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Chamilo LMS versions prior to 1.11.38 and prior to 2.0.0-RC.3
Description
Chamilo LMS generates REST API keys using a predictable formula: md5(time() + (
user id * 5) - rand(10000, 10000)). The rand(10000, 10000) function consistently returns 10000, simplifying the key generation to md5(timestamp + user id * 5 - 10000). Knowing a username and approximate key creation time allows an attacker to brute-force the API key.Recommendations
Update to version 1.11.38 or later.
Update to version 2.0.0-RC.3 or later.
Fix
Use of Insufficiently Random Values
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Chamilo Lms