3 matches found
CVE-2023-38334
Omnis Studio 10.22.00 is affected by an access-control weakness in its library locking feature. Several sources (including CVE-2023-38334 records from NVD/RedHat/CVE and related feeds) state that locked classes in Omnis libraries can be unlocked due to implementation issues, allowing further anal...
CVE-2023-38335
Affected software: Omnis Studio 10.22.00. Vulnerability: incorrect access control that allows bypass of the intended “always private” library setting, enabling Omnis libraries to be opened by the Omnis Studio browser through bypassing specific checks. Root cause: implementation issues in the irre...
CVE-2000-0449
CVE-2000-0449 : Omnis Studio 2.4 uses weak encryption (trivial encoding) to protect database fields. The provided metrics assign a 10.0 base score (HIGH) with network attack vector and complete impact to confidentiality, integrity, and availability. No exploitation details, specific fixes, or rem...