Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:35690
HistoryMay 25, 2022 - 6:11 a.m.

Authentication Bypass

2022-05-2506:11:45
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
opencast
authentication
bypass
vulnerability
addcontenttorepo
ingestserviceimpl
urls
attacker
organizational barriers
software

EPSS

0.001

Percentile

19.4%

JSON

Opencast-ingest-service-impl is vulnerable to authentication bypass. The vulnerability exists in addContentToRepo function in IngestServiceImpl.java because opencast doesn’t properly restrict users when passing URLs which allows an attacker to gain access and bypass organizational barriers.

Related

nvd 1
cve 1
github 1
prion 1
osv 2
cvelist 1
openvas 1
nvd
nvd
CVE-2022-29237
2022-05-24 15:15:08
cve
cve
CVE-2022-29237
2022-05-24 15:15:08
github
github
Limited Authentication Bypass for Media Files
2022-05-25 20:16:36
prion
prion
Double free
2022-05-24 15:15:00
osv
osv
CVE-2022-29237
2022-05-24 15:15:08
Limited Authentication Bypass for Media Files
2022-05-25 20:16:36
cvelist
cvelist
CVE-2022-29237 Limited Authentication Bypass for Media Files in Opencast
2022-05-24 14:40:11
openvas
openvas
Opencast < 10.14, 11.x < 11.7 Improper Authentication Vulnerability
2022-05-26 00:00:00

EPSS

0.001

Percentile

19.4%

JSON
Related for VERACODE:35690
nvd1cve1github1prion1osv2cvelist1openvas1