2 matches found
FreeBSD : opengrok -- Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise OpenGrok. (1135e939-62b4-11ec-b8e2-1c1b0d9ea7e6)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 1135e939-62b4-11ec-b8e2-1c1b0d9ea7e6 advisory. - Vulnerability in OpenGrok component: Web App. Versions that are affected are 1.6.7 and prior. Easily...
CVE-2021-2322
OpenGrok Web App vulnerability CVE-2021-2322 affects OpenGrok versions 1.6.7 and earlier. Root cause per multiple sources is insecure XML deserialization leading to remote code execution and full takeover risk. Affected entries consistently cite CVSS 3.1 base score 8.8 (HIGH) with network access ...