Omero.server Security Vulnerabilities and Issues — Omero.server CVE List

Lucene search

OpenmicroscopyOmero.server

3 matches found

CVE•added 2020/07/22 4:15 p.m.•34 views

CVE-2019-16244

OMERO.server before 5.6.1 allows attackers to bypass the security filters and access hidden objects via a crafted query.

9.8CVSS9.2AI score0.00504EPSS

CVE•added 2020/06/17 5:15 p.m.•34 views

CVE-2019-9944

In Open Microscopy Environment OMERO.server 5.0.0 through 5.6.0, the reading of files from imported image filesets may circumvent OMERO permissions restrictions. This occurs because the Bio-Formats feature allows an image file to have embedded pathnames.

7.5CVSS7.5AI score0.00244EPSS

CVE•added 2020/06/17 5:15 p.m.•28 views

CVE-2019-9943

In ome.services.graphs.GraphTraversal.findObjectDetails in Open Microscopy Environment OMERO.server 5.1.0 through 5.6.0, permissions on OMERO model objects may be circumvented during certain operations such as move and delete, because group permissions are mishandled.

7.5CVSS7.5AI score0.00148EPSS