21 matches found
CVE-2018-1000635
The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains a Information Exposure Through Sent Data vulnerability in OMERO.server that can result in an Attacker gaining full administrative access to server and may be able to disable it. This vulnerability appears to have been...
EUVD-2018-1968
Malware in sbrugna...
CVE-2018-1000633
The Open Microscopy Environment OMERO.web version prior to 5.4.7 contains an Information Exposure Through Log Files vulnerability in the login form and change password form that can result in User's password being revealed. Attacker can log in as that user. This attack appear to be exploitable vi...
OMERO.web跨站脚本漏洞
OMERO.web is a client program from the Open Microscopy Environment team for viewing images on the OMERO server from a web browser. A cross-site scripting vulnerability exists in omero-web that stems from the WEB application's lack of proper validation of client-side data. An attacker can exploit...
OMERO.web 输入验证错误漏洞
OMERO.web is a client program from the Open Microscopy Environment team for viewing images on the OMERO server from a web browser. A security vulnerability exists in OMERO.web that allows redirection to untrusted sites...
OMERO.web 信息泄露漏洞
OMERO.web is a client program from the Open Microscopy Environment team for viewing images on the OMERO server from a web browser. An information disclosure vulnerability exists in OMERO.web that stems from the exposure of page information...
OMERO.server information disclosure vulnerability (CNVD-2021-20273)
OMERO.server is an image server from the Open Microscopy Environment team. A security vulnerability exists in OMERO.server versions prior to 5.6.1. An attacker could exploit this vulnerability to obtain per-user details...
CVE-2019-9944
In Open Microscopy Environment OMERO.server 5.0.0 through 5.6.0, the reading of files from imported image filesets may circumvent OMERO permissions restrictions. This occurs because the Bio-Formats feature allows an image file to have embedded pathnames...
Design/Logic Flaw
In Open Microscopy Environment OMERO.server 5.0.0 through 5.6.0, the reading of files from imported image filesets may circumvent OMERO permissions restrictions. This occurs because the Bio-Formats feature allows an image file to have embedded pathnames...
CVE-2019-9943
In ome.services.graphs.GraphTraversal.findObjectDetails in Open Microscopy Environment OMERO.server 5.1.0 through 5.6.0, permissions on OMERO model objects may be circumvented during certain operations such as move and delete, because group permissions are mishandled...
CVE-2019-9943
Affected software: Open Microscopy Environment OMERO.server 5.1.0–5.6.0. Vulnerability: permissions on OMERO model objects may be circumvened during operations such as move and delete due to mishandled group permissions. Root cause (as described): group permissions mishandling leads to permission...
CVE-2019-9944
In Open Microscopy Environment OMERO.server 5.0.0 through 5.6.0, the reading of files from imported image filesets may circumvent OMERO permissions restrictions. This occurs because the Bio-Formats feature allows an image file to have embedded pathnames...
CVE-2019-9944
In Open Microscopy Environment OMERO.server 5.0.0–5.6.0, the Bio-Formats feature enables an image file to carry embedded pathnames, permitting reading of files from imported image filesets that may bypass OMERO permissions restrictions. This is the concrete vulnerability described for CVE-2019-99...
CVE-2018-1000635
The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains a Information Exposure Through Sent Data vulnerability in OMERO.server that can result in an Attacker gaining full administrative access to server and may be able to disable it. This vulnerability appears to have been...
CVE-2018-1000635
The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains a Information Exposure Through Sent Data vulnerability in OMERO.server that can result in an Attacker gaining full administrative access to server and may be able to disable it. This vulnerability appears to have been...
CVE-2018-1000633
The Open Microscopy Environment OMERO.web version prior to 5.4.7 contains an Information Exposure Through Log Files vulnerability in the login form and change password form that can result in User's password being revealed. Attacker can log in as that user. This attack appear to be exploitable vi...
Information disclosure
The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains a Information Exposure Through Sent Data vulnerability in OMERO.server that can result in an Attacker gaining full administrative access to server and may be able to disable it. This vulnerability appears to have been...
CVE-2018-1000635
The Open Microscopy Environment OMERO.server (versions 5.4.0–5.4.6) contains an information exposure vulnerability in which data sent by the server can disclose sensitive information, enabling an attacker to gain full administrative access and potentially disable the server. The issue is stated t...
CVE-2018-1000634
The vulnerability CVE-2018-1000634 affects Open Microscopy Environment OMERO.server versions 5.4.0–5.4.6. It is an Improper Access Control flaw in User management that can allow an administrative user with restricted privileges to log in as a more powerful administrator. The attack is described a...
CVE-2018-1000633
The Open Microscopy Environment OMERO.web version prior to 5.4.7 contains an Information Exposure Through Log Files vulnerability in the login form and change password form that can result in User's password being revealed. Attacker can log in as that user. This attack appear to be exploitable vi...