PT-2026-38443 · Relate · Relate
Highinducer
+1
·
Published
2026-05-07
·
Updated
2026-05-07
·
CVE-2026-41505
CVSS v3.1
8.7
High
| Vector | AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
RELATE versions prior to commit 2f68e16
Description
RELATE is a web-based courseware package that contains a flaw allowing predictable token generation. This issue occurs within the
make sign in key() function in auth.py and the gen ticket code() function in exam.py.Recommendations
Update to the version containing commit 2f68e16.
Fix
Use of Insufficiently Random Values
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Relate