CVE-2026-28675 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

OpenSift is an AI study tool that sifts through large datasets using semantic search and generative AI. Prior to version 1.6.3-alpha, some endpoints returned ra…
Medium CVSS: 5.3

CVE-2026-28675

OpenSift is an AI study tool that sifts through large datasets using semantic search and generative AI. Prior to version 1.6.3-alpha, some endpoints returned raw exception strings to clients. Additionally, login token material was exposed in UI/rendered responses and token rotation output. This issue has been patched in version 1.6.3-alpha.
Vendor
Opensift
Product
Opensift
CWE
CWE-200
Yayın Tarihi
2026-03-06 05:16:35
Güncelleme
2026-03-18 13:04:29
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-200 Opensift MEDIUM Opensift 2026

Referanslar

https://github.com/OpenSift/OpenSift/commit/1126e0a503876056a68a434e19f64158a5a4840b https://github.com/OpenSift/OpenSift/commit/de99b9c https://github.com/OpenSift/OpenSift/pull/67 https://github.com/OpenSift/OpenSift/releases/tag/v1.6.3-alpha https://github.com/OpenSift/OpenSift/security/advisories/GHSA-667g-rvcj-w976