23 matches found
CVE-2018-1000634
The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains an Improper Access Control vulnerability in User management that can result in administrative user with privilege restrictions logging in as a more powerful administrator. This attack appear to be exploitable via Use use...
EUVD-2018-1969
Malware in sbrugna...
EUVD-2018-1968
Malware in sbrugna...
EUVD-2019-7051
Malware in sbrugna...
CVE-2019-16244
OMERO.server before 5.6.1 allows attackers to bypass the security filters and access hidden objects via a crafted query...
Security feature bypass
OMERO.server before 5.6.1 allows attackers to bypass the security filters and access hidden objects via a crafted query...
CVE-2019-16244
OMERO.server before 5.6.1 allows attackers to bypass the security filters and access hidden objects via a crafted query...
OMERO.server information disclosure vulnerability (CNVD-2021-20273)
OMERO.server is an image server from the Open Microscopy Environment team. A security vulnerability exists in OMERO.server versions prior to 5.6.1. An attacker could exploit this vulnerability to obtain per-user details...
OMERO.server Information Disclosure Vulnerability
OMERO.server is an image server from the Open Microscopy Environment team. A security vulnerability exists in OMERO.server versions prior to 5.6.1. An attacker could exploit the vulnerability to access data of members in other groups...
CVE-2019-9943
In ome.services.graphs.GraphTraversal.findObjectDetails in Open Microscopy Environment OMERO.server 5.1.0 through 5.6.0, permissions on OMERO model objects may be circumvented during certain operations such as move and delete, because group permissions are mishandled...
Buffer overflow
In ome.services.graphs.GraphTraversal.findObjectDetails in Open Microscopy Environment OMERO.server 5.1.0 through 5.6.0, permissions on OMERO model objects may be circumvented during certain operations such as move and delete, because group permissions are mishandled...
Design/Logic Flaw
In Open Microscopy Environment OMERO.server 5.0.0 through 5.6.0, the reading of files from imported image filesets may circumvent OMERO permissions restrictions. This occurs because the Bio-Formats feature allows an image file to have embedded pathnames...
CVE-2019-9943
In ome.services.graphs.GraphTraversal.findObjectDetails in Open Microscopy Environment OMERO.server 5.1.0 through 5.6.0, permissions on OMERO model objects may be circumvented during certain operations such as move and delete, because group permissions are mishandled...
CVE-2019-9943
Affected software: Open Microscopy Environment OMERO.server 5.1.0–5.6.0. Vulnerability: permissions on OMERO model objects may be circumvened during operations such as move and delete due to mishandled group permissions. Root cause (as described): group permissions mishandling leads to permission...
CVE-2019-9944
In Open Microscopy Environment OMERO.server 5.0.0 through 5.6.0, the reading of files from imported image filesets may circumvent OMERO permissions restrictions. This occurs because the Bio-Formats feature allows an image file to have embedded pathnames...
CVE-2019-9944
In Open Microscopy Environment OMERO.server 5.0.0–5.6.0, the Bio-Formats feature enables an image file to carry embedded pathnames, permitting reading of files from imported image filesets that may bypass OMERO permissions restrictions. This is the concrete vulnerability described for CVE-2019-99...
CVE-2018-1000635
The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains a Information Exposure Through Sent Data vulnerability in OMERO.server that can result in an Attacker gaining full administrative access to server and may be able to disable it. This vulnerability appears to have been...
CVE-2018-1000634
The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains an Improper Access Control vulnerability in User management that can result in administrative user with privilege restrictions logging in as a more powerful administrator. This attack appear to be exploitable via Use use...
Improper access control
The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains an Improper Access Control vulnerability in User management that can result in administrative user with privilege restrictions logging in as a more powerful administrator. This attack appear to be exploitable via Use use...
Information disclosure
The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains a Information Exposure Through Sent Data vulnerability in OMERO.server that can result in an Attacker gaining full administrative access to server and may be able to disable it. This vulnerability appears to have been...