An issue was discovered in Apereo Opencast 4.x through 10.x before 10.6. It sends system digest credentials during authentication attempts to arbitrary external services in some situations.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NApereo Opencast
APPApereo4.0 – 10.6 (bez)
Powiązane podatności
Opencast is an Open Source Lecture Capture & Video Management for Education. Opencast before version 9.10 or 1...
Opencast is an Open Source Lecture Capture & Video Management for Education. Opencast versions prior to 9.10 a...
Opencast is a free and open source solution for automated video capture and distribution. Versions of Opencast...
In Opencast before 7.6 and 8.1, using a remember-me cookie with an arbitrary username can cause Opencast to as...
Opencast before 8.1 and 7.6 allows unauthorized public access to all media and metadata by default via OAI-PMH...