Security Advisory

CVE-2026-24669

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-03 17:00:38

Last updated 2026-02-04 16:51:37

Assigner GitHub_M

State PUBLISHED

Description

The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, an insecure password reset mechanism allows local attackers to reuse a valid password reset token after it has already been used, enabling unauthorized password changes and potential account takeover. This issue has been patched in version 4.2.

← Browse all CVEs View on cve.org ↗