Vulnerability Details CVE-2018-16153
An issue was discovered in Apereo Opencast 4.x through 10.x before 10.6. It sends system digest credentials during authentication attempts to arbitrary external services in some situations.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.4%
CVSS Severity
CVSS v3 Score 7.5
References
- https://docs.opencast.org/r/10.x/admin/#changelog
- https://github.com/advisories/GHSA-hcxx-mp6g-6gr9
- https://github.com/opencast/opencast/commit/776d5588f39c61eb04c03bb955416c4f77629d51
- https://www.apereo.org/projects/opencast/news
- https://docs.opencast.org/r/10.x/admin/#changelog
- https://github.com/advisories/GHSA-hcxx-mp6g-6gr9
- https://github.com/opencast/opencast/commit/776d5588f39c61eb04c03bb955416c4f77629d51
- https://www.apereo.org/projects/opencast/news
Products affected by CVE-2018-16153
-
cpe:2.3:a:apereo:opencast:10.0
-
cpe:2.3:a:apereo:opencast:10.1
-
cpe:2.3:a:apereo:opencast:10.2
-
cpe:2.3:a:apereo:opencast:10.3
-
cpe:2.3:a:apereo:opencast:10.4
-
cpe:2.3:a:apereo:opencast:10.5
-
cpe:2.3:a:apereo:opencast:4.0
-
cpe:2.3:a:apereo:opencast:4.1
-
cpe:2.3:a:apereo:opencast:4.2
-
cpe:2.3:a:apereo:opencast:4.3
-
cpe:2.3:a:apereo:opencast:4.4
-
cpe:2.3:a:apereo:opencast:4.5
-
cpe:2.3:a:apereo:opencast:5.0
-
cpe:2.3:a:apereo:opencast:5.1
-
cpe:2.3:a:apereo:opencast:5.2
-
cpe:2.3:a:apereo:opencast:5.3
-
cpe:2.3:a:apereo:opencast:5.4
-
cpe:2.3:a:apereo:opencast:5.5
-
cpe:2.3:a:apereo:opencast:6.0
-
cpe:2.3:a:apereo:opencast:6.1
-
cpe:2.3:a:apereo:opencast:6.2
-
cpe:2.3:a:apereo:opencast:6.3
-
cpe:2.3:a:apereo:opencast:6.4
-
cpe:2.3:a:apereo:opencast:6.5
-
cpe:2.3:a:apereo:opencast:6.6
-
cpe:2.3:a:apereo:opencast:6.7
-
cpe:2.3:a:apereo:opencast:7.0
-
cpe:2.3:a:apereo:opencast:7.1
-
cpe:2.3:a:apereo:opencast:7.2
-
cpe:2.3:a:apereo:opencast:7.3
-
cpe:2.3:a:apereo:opencast:7.4
-
cpe:2.3:a:apereo:opencast:7.5
-
cpe:2.3:a:apereo:opencast:7.6
-
cpe:2.3:a:apereo:opencast:7.7
-
cpe:2.3:a:apereo:opencast:7.8
-
cpe:2.3:a:apereo:opencast:7.9
-
cpe:2.3:a:apereo:opencast:8.0
-
cpe:2.3:a:apereo:opencast:8.1
-
cpe:2.3:a:apereo:opencast:8.10
-
cpe:2.3:a:apereo:opencast:8.2
-
cpe:2.3:a:apereo:opencast:8.3
-
cpe:2.3:a:apereo:opencast:8.4
-
cpe:2.3:a:apereo:opencast:8.5
-
cpe:2.3:a:apereo:opencast:8.6
-
cpe:2.3:a:apereo:opencast:8.7
-
cpe:2.3:a:apereo:opencast:8.8
-
cpe:2.3:a:apereo:opencast:8.9
-
cpe:2.3:a:apereo:opencast:9.0
-
cpe:2.3:a:apereo:opencast:9.1
-
cpe:2.3:a:apereo:opencast:9.10
-
cpe:2.3:a:apereo:opencast:9.11
-
cpe:2.3:a:apereo:opencast:9.12
-
cpe:2.3:a:apereo:opencast:9.2
-
cpe:2.3:a:apereo:opencast:9.3
-
cpe:2.3:a:apereo:opencast:9.4
-
cpe:2.3:a:apereo:opencast:9.5
-
cpe:2.3:a:apereo:opencast:9.6
-
cpe:2.3:a:apereo:opencast:9.7
-
cpe:2.3:a:apereo:opencast:9.8
-
cpe:2.3:a:apereo:opencast:9.9