Description

A client-side authorization flaw in Lightspeed Classroom v5.1.2.1763770643 allows unauthenticated attackers to impersonate users by bypassing integrity checks and abusing client-generated authorization tokens, leading to unauthorized control and monitoring of student devices.

INFO

Published Date :

2026-04-24T00:00:00.000Z

Last Modified :

2026-04-24T15:31:46.944Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2026-30368 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-30368.

URL Resource
https://tasty-hovercraft-9b9.notion.site/Enabling-Unauthorized-Remote-Control-of-Student-Devices-with-Lightspeed-Classroom-2ec5157f5b4a800c9eefc5526479820a cve-icon cve-icon
https://www.incognitotgt.me/blog/lightspeed cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System