Information disclosure

2018-08-2019:31:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.8%

JSON

The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains a Information Exposure Through Sent Data vulnerability in OMERO.server that can result in an Attacker gaining full administrative access to server and may be able to disable it. This vulnerability appears to have been fixed in 5.4.7.

CPENameOperatorVersion
omeroge5.4.0
omerole5.4.6

CPE	Name	Operator	Version
	omero	ge	5.4.0
	omero	le	5.4.6

References

www.openmicroscopy.org/2018/07/26/omero-5-4-7.html

www.openmicroscopy.org/security/advisories/2018-SV2-script-name-uuid/