Description

RELATE is a web-based courseware package. Prior to commit 2f68e16, there is a timing attack vulnerability in course/auth.py — check_sign_in_key(). This issue has been patched via commit 2f68e16.

INFO

Published Date :

2026-05-08T14:51:04.993Z

Last Modified :

2026-05-08T14:51:04.993Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-41588 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-41588.

URL Resource
https://github.com/inducer/relate/commit/2f68e16cd3b96d25c188c1aa3f7e13cdb15cdaeb cve-icon cve-icon
https://github.com/inducer/relate/security/advisories/GHSA-78j7-9xr9-2728 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact