Lucene search
GoogleOSV:CVE-2018-16153HistoryDec 12, 2023 - 5:15 p.m.
CVE-2018-16153
2023-12-1217:15:07
Google
osv.dev
8
apereo opencast
system credentials
external services
authentication
cve-2018-16153
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.2
Confidence
Low
EPSS
0.001
Percentile
25.8%
An issue was discovered in Apereo Opencast 4.x through 10.x before 10.6. It sends system digest credentials during authentication attempts to arbitrary external services in some situations.
Related
cvelist
cvelist
CVE-2018-16153
2023-12-12 00:00:00
prion
prion
Design/Logic Flaw
2023-12-12 17:15:00
osv
osv
Opencast publishes global system account credentials
2021-12-14 21:43:48
github
github
Opencast publishes global system account credentials
2021-12-14 21:43:48
cve
cve
CVE-2018-16153
2023-12-12 17:15:07
nvd
nvd
CVE-2018-16153
2023-12-12 17:15:07
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.2
Confidence
Low
EPSS
0.001
Percentile
25.8%
Related for OSV:CVE-2018-16153