Lucene search
+L

18 matches found

redhatcve
redhatcve
added 2026/01/09 8:34 a.m.16 views

CVE-2024-41668

The cBioPortal for Cancer Genomics provides visualization, analysis, and download of large-scale cancer genomics data sets. When running a publicly exposed proxy endpoint without authentication, cBioPortal could allow someone to perform a Server Side Request Forgery SSRF attack. Logged in users...

8.3CVSS6.9AI score0.0058EPSS
Exploits0References1
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-24702

Malware in sbrugna...

7.5CVSS7.6AI score0.0118EPSS
Exploits1References3
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-39122

Malicious code in bioql PyPI...

8.3CVSS6.6AI score0.0058EPSS
Exploits0References5
redhatcve
redhatcve
added 2025/05/22 9:25 p.m.6 views

CVE-2021-38244

A regular expression denial of service ReDoS vulnerability exits in cbioportal 3.6.21 and older via a POST request to /ProteinArraySignificanceTest.json...

7.5CVSS6.7AI score0.0118EPSS
Exploits1References1
nvd
nvd
added 2024/07/23 7:15 p.m.38 views

CVE-2024-41668

The cBioPortal for Cancer Genomics provides visualization, analysis, and download of large-scale cancer genomics data sets. When running a publicly exposed proxy endpoint without authentication, cBioPortal could allow someone to perform a Server Side Request Forgery SSRF attack. Logged in users...

8.3CVSS0.0058EPSS
Exploits0References5
cvelist
cvelist
added 2024/07/23 6:14 p.m.42 views

CVE-2024-41668 cBioPortal Proxy Endpoint Vulnerabliity

The cBioPortal for Cancer Genomics provides visualization, analysis, and download of large-scale cancer genomics data sets. When running a publicly exposed proxy endpoint without authentication, cBioPortal could allow someone to perform a Server Side Request Forgery SSRF attack. Logged in users...

8.3CVSS0.0058EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2024/07/23 6:14 p.m.16 views

CVE-2024-41668 cBioPortal Proxy Endpoint Vulnerabliity

The cBioPortal for Cancer Genomics provides visualization, analysis, and download of large-scale cancer genomics data sets. When running a publicly exposed proxy endpoint without authentication, cBioPortal could allow someone to perform a Server Side Request Forgery SSRF attack. Logged in users...

8.3CVSS8.3AI score0.0058EPSS
Exploits0References5
cve
cve
added 2024/07/23 6:14 p.m.54 views

CVE-2024-41668

The CVE-2024-41668 affects cBioPortal for Cancer Genomics. A publicly exposed proxy endpoint without authentication allows Server-Side Request Forgery (SSRF); logged-in users can exploit this on private instances too. A fix is available in version 6.0.12. As a workaround, disable the /proxy endpo...

8.3CVSS8.3AI score0.0058EPSS
Exploits0References5
osv
osv
added 2024/07/23 6:14 p.m.21 views

CVE-2024-41668 cBioPortal Proxy Endpoint Vulnerabliity

The cBioPortal for Cancer Genomics provides visualization, analysis, and download of large-scale cancer genomics data sets. When running a publicly exposed proxy endpoint without authentication, cBioPortal could allow someone to perform a Server Side Request Forgery SSRF attack. Logged in users...

8.3CVSS6.8AI score0.0058EPSS
Exploits0References7
cnnvd
cnnvd
added 2024/07/23 12:0 a.m.5 views

cBioPortal 安全漏洞

cBioPortal is an application of cBioPortal open source. It is used to provide visualization, analysis, and download of large-scale cancer genomics datasets. A security vulnerability exists in cBioPortal that originates when running a publicly available proxy endpoint without authentication...

8.3CVSS6.9AI score0.0058EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2024/07/23 12:0 a.m.9 views

PT-2024-29495 · Unknown · Cbioportal

Name of the Vulnerable Software and Affected Versions: cBioPortal versions prior to 6.0.12 Description: The cBioPortal for Cancer Genomics provides visualization, analysis, and download of large-scale cancer genomics data sets. When running a publicly exposed proxy endpoint without authentication...

8.3CVSS7.2AI score0.0058EPSS
Exploits0References9
cnvd
cnvd
added 2021/12/19 12:0 a.m.35 views

CbioPortal Denial of Service Vulnerability

CbioPortal is used to provide visualization, analysis, and download of large-scale cancer genomics datasets. a denial-of-service vulnerability exists in CbioPortal in versions 3.6.21 and earlier, which stems from the insecure handling of regular expressions in /ProteinArraySignificanceTest.json,...

7.5CVSS5.2AI score0.0118EPSS
Exploits1References1
nvd
nvd
added 2021/12/16 7:15 p.m.20 views

CVE-2021-38244

A regular expression denial of service ReDoS vulnerability exits in cbioportal 3.6.21 and older via a POST request to /ProteinArraySignificanceTest.json...

7.5CVSS0.0118EPSS
Exploits1References2
osv
osv
added 2021/12/16 7:15 p.m.14 views

CVE-2021-38244

A regular expression denial of service ReDoS vulnerability exits in cbioportal 3.6.21 and older via a POST request to /ProteinArraySignificanceTest.json...

7.5CVSS6.7AI score
Exploits0References2
prion
prion
added 2021/12/16 7:15 p.m.11 views

Denial of service

A regular expression denial of service ReDoS vulnerability exits in cbioportal 3.6.21 and older via a POST request to /ProteinArraySignificanceTest.json...

5CVSS7.3AI score0.0118EPSS
Exploits1References2Affected Software1
cvelist
cvelist
added 2021/12/16 6:15 p.m.18 views

CVE-2021-38244

A regular expression denial of service ReDoS vulnerability exits in cbioportal 3.6.21 and older via a POST request to /ProteinArraySignificanceTest.json...

7.5AI score0.0118EPSS
Exploits1References2
cve
cve
added 2021/12/16 6:15 p.m.53 views

CVE-2021-38244

cbioPortal

7.5CVSS7.3AI score0.0118EPSS
Exploits1References2Affected Software1
cnnvd
cnnvd
added 2021/12/16 12:0 a.m.4 views

cbioportal 安全漏洞

CbioPortal is used to provide visualization, analysis, and download of large-scale cancer genomics datasets. a denial-of-service vulnerability exists in CbioPortal in versions 3.6.21 and earlier, which stems from the insecure handling of regular expressions in /ProteinArraySignificanceTest.json,...

7.5CVSS5.6AI score0.0118EPSS
Exploits1References2
Rows per page
Query Builder