CVE-2026-44720

Summary

OpenLearnX is an open-source, decentralized learning and assessment platform. Prior to 2.0.4, a critical authentication vulnerability was identified in OpenLearnX that could allow unauthorized access to user accounts under specific conditions. This vulnerability is fixed in 2.0.4.

Affected Software

VendorProductVersion RangeStatus
th30d4yOpenLearnX< 2.0.4affected

Weaknesses

  • CWE-287: CWE-287: Improper Authentication
  • CWE-347: CWE-347: Improper Verification of Cryptographic Signature

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References