LearnHouse
CVE-2025-12276
LOW
Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
1DescriptionCVE.org
A vulnerability was detected in LearnHouse up to 98dfad76aad70711a8113f6c1fdabfccf10509ca. Affected by this issue is some unknown functionality of the component Image Handler. The manipulation results in information disclosure. The attack can be executed remotely. The exploit is now public and may be used. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. The vendor was contacted early about this disclosure but did not respond in any way.
AnalysisAI
Information disclosure in LearnHouse Image Handler component allows authenticated remote attackers to access sensitive data via the image handling functionality. The vulnerability affects all versions up to commit 98dfad76aad70711a8113f6c1fdabfccf10509ca, with publicly available exploit code documented. Due to LearnHouse's rolling-release model, specific patched version numbers are unavailable, and the vendor has not responded to disclosure attempts.
Technical ContextAI
The vulnerability exists in LearnHouse's Image Handler component, which processes image uploads and retrieval operations. The root cause is classified as CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor), indicating improper access controls or information leakage within the image handling logic. The CVSS vector (PR:L) confirms authenticated access is required, suggesting the Image Handler fails to properly validate permissions or sanitize image metadata/paths when processing requests from logged-in users. LearnHouse uses a rolling-release development model where versioning is commit-based rather than traditional semantic versioning, complicating vulnerability tracking.
RemediationAI
No vendor-released patch has been identified at time of analysis due to the vendor's non-response and rolling-release model. Immediate mitigation requires updating LearnHouse to the latest development version on the main branch (post-98dfad76aad70711a8113f6c1fdabfccf10509ca) if available via the project's repository, and monitoring the LearnHouse GitHub repository for security commits addressing Image Handler access control. Interim compensating controls include restricting image handler endpoints to authenticated users only (enforcing existing PR:L requirement), implementing request rate-limiting on image retrieval operations, and reviewing image handler logs for unauthorized access patterns. Additionally, audit which users have been logged in since the vulnerability was introduced, as the information disclosure may have exposed user data or uploaded file metadata. The low CVSS score (2.1) and 10th percentile EPSS suggest this can be addressed during a planned update cycle rather than as an emergency patch.
Share
External POC / Exploit Code
Leaving vuln.today