{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-30368", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-27T10:18:21.695Z", "dateReserved": "2026-03-04T00:00:00.000Z", "datePublished": "2026-04-24T00:00:00.000Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unknown", "product": "Lightspeed Classroom", "vendor": "Lightspeed", "versions": [{"status": "affected", "version": "5.1.2.1763770643", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "A client-side authorization flaw in Lightspeed Classroom v5.1.2.1763770643 allows unauthenticated attackers to impersonate users by bypassing integrity checks and abusing client-generated authorization tokens, leading to unauthorized control and monitoring of student devices."}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-863", "description": "CWE-863 Incorrect Authorization", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-27T06:37:43.503Z"}, "references": [{"url": "https://tasty-hovercraft-9b9.notion.site/Enabling-Unauthorized-Remote-Control-of-Student-Devices-with-Lightspeed-Classroom-2ec5157f5b4a800c9eefc5526479820a"}, {"url": "https://www.incognitotgt.me/blog/lightspeed"}], "x_generator": {"engine": "enrichogram 0.0.1"}}, "adp": [{"references": [{"url": "https://tasty-hovercraft-9b9.notion.site/Enabling-Unauthorized-Remote-Control-of-Student-Devices-with-Lightspeed-Classroom-2ec5157f5b4a800c9eefc5526479820a", "tags": ["broken-link"]}, {"url": "https://github.com/truekas/ls-poc", "tags": ["exploit"]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-27T10:17:22.860099Z", "id": "CVE-2026-30368", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-27T10:18:21.695Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-30368", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-27T10:18:21.695Z", "dateReserved": "2026-03-04T00:00:00.000Z", "datePublished": "2026-04-24T00:00:00.000Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unknown", "product": "Lightspeed Classroom", "vendor": "Lightspeed", "versions": [{"status": "affected", "version": "5.1.2.1763770643", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "value": "A client-side authorization flaw in Lightspeed Classroom v5.1.2.1763770643 allows unauthenticated attackers to impersonate users by bypassing integrity checks and abusing client-generated authorization tokens, leading to unauthorized control and monitoring of student devices."}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-863", "description": "CWE-863 Incorrect Authorization", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-27T06:37:43.503Z"}, "references": [{"url": "https://tasty-hovercraft-9b9.notion.site/Enabling-Unauthorized-Remote-Control-of-Student-Devices-with-Lightspeed-Classroom-2ec5157f5b4a800c9eefc5526479820a"}, {"url": "https://www.incognitotgt.me/blog/lightspeed"}], "x_generator": {"engine": "enrichogram 0.0.1"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-30368", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-27T10:17:22.860099Z"}}}], "references": [{"url": "https://tasty-hovercraft-9b9.notion.site/Enabling-Unauthorized-Remote-Control-of-Student-Devices-with-Lightspeed-Classroom-2ec5157f5b4a800c9eefc5526479820a", "tags": ["broken-link"]}, {"url": "https://github.com/truekas/ls-poc", "tags": ["exploit"]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-24T18:28:53.726Z"}}]}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A client-side authorization flaw in Lightspeed Classroom v5.1.2.1763770643 allows unauthenticated attackers to impersonate users by bypassing integrity checks and abusing client-generated authorization tokens, leading to unauthorized control and monitoring of student devices."}], "id": "CVE-2026-30368", "lastModified": "2026-04-27T11:16:01.770", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 2.7, "source": "cve@mitre.org", "type": "Secondary"}]}, "published": "2026-04-24T16:16:34.993", "references": [{"source": "cve@mitre.org", "url": "https://tasty-hovercraft-9b9.notion.site/Enabling-Unauthorized-Remote-Control-of-Student-Devices-with-Lightspeed-Classroom-2ec5157f5b4a800c9eefc5526479820a"}, {"source": "cve@mitre.org", "url": "https://www.incognitotgt.me/blog/lightspeed"}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "url": "https://github.com/truekas/ls-poc"}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "url": "https://tasty-hovercraft-9b9.notion.site/Enabling-Unauthorized-Remote-Control-of-Student-Devices-with-Lightspeed-Classroom-2ec5157f5b4a800c9eefc5526479820a"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-863"}], "source": "cve@mitre.org", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "5.1.2.1763770643"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "Lightspeed Classroom", "source": "cna", "vendor": "Lightspeed"}, "product": "lightspeed_classroom", "vendor": "lightspeed"}], "analysis": {"en": {"generated_at": "2026-04-28T14:31:50.644306+00:00", "value": {"mitigation_remediation": ["Limit network access to the Lightspeed Classroom client, blocking unauthorized IPs and ports that could be used to transmit forged tokens.", "Disable or strictly monitor remote control and monitoring features in the Classroom client until a vendor patch or upgrade is available.", "Plan to upgrade to a patched version of Lightspeed Classroom as soon as the vendor releases a fix."], "summary": {"action": "Immediate Action", "impact": "Unauthorized impersonation and remote control of student devices"}, "threat_synthesis": {"affected_systems": "The vulnerability affects Lightspeed Classroom version 5.1.2.1763770643. No other versions or products are listed at this time.*", "description_and_impact": "An unauthenticated client\u2011side authorization flaw in Lightspeed Classroom v5.1.2.1763770643 allows attackers to bypass integrity checks and forge client\u2011generated authorization tokens, giving them the ability to impersonate legitimate users and gain control and monitoring capabilities of student devices. The weakness is classified as CWE\u2011863 (Authorization Bypass through User-Controlled Key). The impact includes unauthorized remote device control, potential data exfiltration, and disruption of classroom management.*", "risk_and_exploitability": "The CVSS score of 5.4 indicates a moderate severity. The EPSS score of less than 1% suggests a very low likelihood of exploitation, and the vulnerability is not listed in the CISA KEV catalog. The attack vector is client\u2011side; the flaw can be exercised by any entity able to interact with the Classroom client, whether by only providing forged tokens or by directly accessing the client\u2019s network endpoints. Detailed exploitation steps are not supplied in the advisory, but the description implies that an attacker can impersonate a user without needing prior authentication.*"}}}}, "created": "2026-04-27T19:52:55.849098+00:00", "title": "Unauthenticated Authorization Flaw Enables Remote Control in Lightspeed Classroom", "updated": "2026-04-28T14:45:16.180329+00:00", "vendors": ["lightspeed", "lightspeed$PRODUCT$lightspeed_classroom"]}