ByteOS Network

NVD Vulnerability Details :

CVE-2026-27189

Received

Source-security-advisories@github.com

Published At-21 Feb, 2026 | 00:16

Updated At-21 Feb, 2026 | 00:16

OpenSift is an AI study tool that sifts through large datasets using semantic search and generative AI. Versions 1.1.2-alpha and below, use non-atomic and insufficiently synchronized local JSON persistence flows, potentially causing concurrent operations to lose updates or corrupt local state across sessions/study/quiz/flashcard/wellness/auth stores. This issue has been fixed in version 1.1.3-alpha.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	6.6	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

Type: Secondary

Version: 3.1

Base score: 6.6

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

Weaknesses

CWE ID	Type	Source
CWE-362	Primary	security-advisories@github.com
CWE-367	Primary	security-advisories@github.com

CWE ID: CWE-362

Type: Primary

Source: security-advisories@github.com

CWE ID: CWE-367

Type: Primary

Source: security-advisories@github.com

References

Hyperlink	Source	Resource
https://github.com/OpenSift/OpenSift/releases/tag/v1.1.3-alpha	security-advisories@github.com	N/A
https://github.com/OpenSift/OpenSift/security/advisories/GHSA-3pmp-j953-whxq	security-advisories@github.com	N/A

Hyperlink: https://github.com/OpenSift/OpenSift/releases/tag/v1.1.3-alpha

Source: security-advisories@github.com

Resource: N/A

Hyperlink: https://github.com/OpenSift/OpenSift/security/advisories/GHSA-3pmp-j953-whxq

Source: security-advisories@github.com

Resource: N/A

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History