CVE-2026-41505

CVSS v3.1

8.7

High

Vector

AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H

RELATE is a web-based courseware package. Prior to commit 2f68e16, RELATE is vulnerable to predictable token generation in auth.py's make sign in key() function and exam.py's gen ticket code() function. This issue has been patched via commit 2f68e16.

Fix

Use of Insufficiently Random Values

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-330CWE-338

Related Identifiers

CVE-2026-41505

Affected Products

Relate

CVE-2026-41505

Weakness Enumeration

Related Identifiers

Affected Products

References · 3