LearnHouse Image information disclosure_CVE-2025-12276

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was detected in LearnHouse up to 98dfad76aad70711a8113f6c1fdabfccf10509ca. Affected by this issue is some unknown functionality of the component Image Handler. The manipulation results in information disclosure. The attack can be executed remotely. The exploit is now public and may be used. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. The vendor was contacted early about this disclosure but did not respond in any way.

Basic Information

ID CVE-2025-12276

Source VulDB

Published Oct 27, 2025 at 13:02

Modified Oct 27, 2025 at 20:14

Affected Product

Vendor n/a

Product LearnHouse

Version 98dfad76aad70711a8113f6c1fdabfccf10509ca

Affected Versions n/a LearnHouse 98dfad76aad70711a8113f6c1fdabfccf10509ca

CWE Classification

CWE-200 CWE-284

References

{
    "lastseen": "",
    "description": "A vulnerability was detected in LearnHouse up to 98dfad76aad70711a8113f6c1fdabfccf10509ca. Affected by this issue is some unknown functionality of the component Image Handler. The manipulation results in information disclosure. The attack can be executed remotely. The exploit is now public and may be used. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2025-10-27T13:02:05.167Z",
    "modified": "2025-10-27T20:14:46.615Z",
    "type": "cve",
    "title": "LearnHouse Image information disclosure",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.329947\nhttps://vuldb.com/?ctiid.329947\nhttps://vuldb.com/?submit.674148\nhttps://gist.github.com/KhanMarshaI/4a89e9d807094b6dd4a138bc5664e748",
    "id": "CVE-2025-12276",
    "bulletinFamily": "",
    "cwe": [
        "CWE-200",
        "CWE-284"
    ],
    "cvelist": null,
    "sourceData": "n/a LearnHouse 98dfad76aad70711a8113f6c1fdabfccf10509ca",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "LearnHouse",
    "version": "98dfad76aad70711a8113f6c1fdabfccf10509ca",
    "vendor": "n/a",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}