CVE-2026-41900

HIGH SEVERITY

CVSS Score & Metrics

Base Score

8.8 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H                                    

Vulnerability Description

OpenLearnX is an open-source, decentralized learning and assessment platform. Prior to version 2.0.3, a remote code execution (RCE) vulnerability was identified in the OpenLearnX code execution environment, allowing sandbox escape and arbitrary command execution. This issue has been patched in version 2.0.3.

Vulnerability Details

Published Date

April 23, 2026

Last Modified

May 08, 2026

CWE ID

CWE-78

Source

GitHub

Vendor

npm

Product

openlearnx

External References

https://github.com/th30d4y/OpenLearnX/security/advisories/GHSA-8h25-q488-4hxw
https://github.com/th30d4y/OpenLearnX/commit/14765d7d1856d564747c55c5412e2f38feab079e
https://github.com/advisories/GHSA-8h25-q488-4hxw

CVE-2026-41900

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment