Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2022/05/26 12:0 a.m.14 views

Opencast < 10.14, 11.x < 11.7 Improper Authentication Vulnerability

Opencast is prone to a improper authentication vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

5.5CVSS5.6AI score0.00541EPSS
Exploits0References2
Circl
Circl
added 2022/05/24 6:36 p.m.5 views

CVE-2022-29237

creationtimestamp| type| source ---|---|--- 2022-05-24 18:36:56+00:00| seen| https://t.me/cibsecurity/43252...

5.5CVSS5.5AI score0.00541EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/05/24 2:40 p.m.9 views

CVE-2022-29237 Limited Authentication Bypass for Media Files in Opencast

Opencast is a free and open source solution for automated video capture and distribution at scale. Prior to Opencast 10.14 and 11.7, users could pass along URLs for files belonging to organizations other than the user's own, which Opencast would then import into the current organization, bypassin...

5.4CVSS5.2AI score0.00541EPSS
Exploits0References2
CVE
CVE
added 2022/05/24 2:40 p.m.103 views

CVE-2022-29237

Opencast exposes a cross-tenant access flaw: before versions 10.14 and 11.7, an attacker with full access to the ingest REST interface and knowledge of internal links could import files from another organization within the same multi-tenant cluster, bypassing organizational barriers. The issue is...

5.5CVSS5.1AI score0.00541EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/05/24 2:40 p.m.27 views

CVE-2022-29237 Limited Authentication Bypass for Media Files in Opencast

Opencast is a free and open source solution for automated video capture and distribution at scale. Prior to Opencast 10.14 and 11.7, users could pass along URLs for files belonging to organizations other than the user's own, which Opencast would then import into the current organization, bypassin...

5.4CVSS5.4AI score0.00541EPSS
Exploits0References2
Rows per page
Query Builder