CVE-2025-47942

May 21, 2025 invoker category_cve

CVE Details

Basic Information

Title CVE-2025-47942
Type cve
Published 2025-05-21T22:15:50
Last Seen 2025-05-21T22:25:45

CVSS Information

Base Score 5.3 (MEDIUM)
Attack Vector NETWORK
Attack Complexity LOW
Privileges Required NONE
User Interaction NONE
Scope UNCHANGED
Confidentiality Impact LOW
Integrity Impact NONE
Availability Impact NONE

AI Analysis

AI Description A vulnerability in the Open edX Platform allows unauthorized access to the python_lib.zip asset from courses due to a lack of built-in protection.
AI Severity Medium
Vendor Open edX Project
Product Open edX Platform
Affected Version

Additional Information

CVE List CVE-2025-47942
CWE List CWE-862
Bulletin Family cve

Description

The Open edX Platform is a learning management platform. Prior to commit 6740e75c0fdc7ba095baf88e9f5e4f3e15cfd8ba, edxapp has no built-in protection against downloading the python_lib.zip asset from courses, which is…

CVSS Score Summary

Base Score: %!f(string=#) (MEDIUM)

View Full CVE Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.