In a statement issued on Sunday, CBSE said it has engaged cybersecurity experts from government agencies and the Indian Institutes of Technology (IITs) to strengthen the portal and address potential risks.

CBSE Responds to Security Concerns

The development comes days after 19-year-old cybersecurity researcher Nisarga Adhikary alleged that he had discovered significant flaws in the OSM portal and reported them to the Indian Computer Emergency Response Team (CERT-In).

According to CBSE, the vulnerabilities identified so far have been contained, while experts continue to review the platform for any remaining weaknesses.

CBSE also noted that it has directly engaged with some individuals who reported security concerns.

Researcher Claims Authentication Weakness

Adhikary, who describes himself as a cybersecurity researcher, detailed his findings in a blog post and on social media. He claimed that while examining the portal’s authentication system, he found what he described as a “master password” embedded within the website’s code.

According to his account, the password could potentially bypass certain authentication steps, including the one-time password (OTP) verification process.

The researcher further alleged that such access could allow unauthorized users to enter the dashboard and potentially manipulate sensitive data.

CBSE Working With Experts

In response to the allegations, CBSE said it has mobilized a team of cybersecurity professionals to conduct a thorough review of the platform.

The board emphasized that safeguarding student data and examination- systems remains a priority. Officials are continuing technical assessments to ensure the portal remains secure and resilient against potential cyber threats.

Wider Debate on Digital Security

The issue has sparked discussions about cybersecurity standards in large-scale educational systems, especially those handling examination records and student information.

Experts have often stressed the importance of regular security audits, vulnerability testing, and responsible disclosure mechanisms to identify and address weaknesses before they can be exploited.

The latest development has also highlighted the growing role of ethical hackers and independent researchers in strengthening digital infrastructure by responsibly reporting vulnerabilities.

Investigation Continues

Following CBSE’s statement, Adhikary reacted on social media, saying the board had acknowledged the existence of flaws in the system. However, the post was later removed.

As technical reviews continue, CBSE has assured stakeholders that it is taking all necessary measures to reinforce security and maintain the integrity of its digital examination infrastructure.