VYPR
Critical severity9.0NVD Advisory· Published May 8, 2026· Updated May 12, 2026

CVE-2026-41588

CVE-2026-41588

Description

RELATE is a web-based courseware package. Prior to commit 2f68e16, there is a timing attack vulnerability in course/auth.py — check_sign_in_key(). This issue has been patched via commit 2f68e16.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Inducer/Relatereferences3 versions
    (expand)+ 2 more
    • (no CPE)
    • cpe:2.3:a:inducer:relate:*:*:*:*:*:*:*:*range: <2026-04-17
    • (no CPE)range: < 2f68e16

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.