CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-23989

REVA is an interoperability platform. Prior to 2.42.3 and 2.40.3, a bug in the GRPC authorization middleware of the "Reva" component of OpenCloud allows a malicious user to bypass the scope verification of a public link. By exploiting this via the the "archiver" service this can be leveraged to create an archive (zip or tar-file) containing all resources that this creator of the public link has access to. This vulnerability is fixed in 2.42.3 and 2.40.3.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.8%

CVSS Severity

CVSS v3 Score 8.2

References

Products affected by CVE-2026-23989

Heinlein » Opencloud Reva » Version: 0.0.1

cpe:2.3:a:heinlein:opencloud_reva:0.0.1
Heinlein » Opencloud Reva » Version: 0.0.10

cpe:2.3:a:heinlein:opencloud_reva:0.0.10
Heinlein » Opencloud Reva » Version: 0.0.12

cpe:2.3:a:heinlein:opencloud_reva:0.0.12
Heinlein » Opencloud Reva » Version: 0.0.13

cpe:2.3:a:heinlein:opencloud_reva:0.0.13
Heinlein » Opencloud Reva » Version: 0.0.14

cpe:2.3:a:heinlein:opencloud_reva:0.0.14
Heinlein » Opencloud Reva » Version: 0.0.15

cpe:2.3:a:heinlein:opencloud_reva:0.0.15
Heinlein » Opencloud Reva » Version: 0.0.16

cpe:2.3:a:heinlein:opencloud_reva:0.0.16
Heinlein » Opencloud Reva » Version: 0.0.17

cpe:2.3:a:heinlein:opencloud_reva:0.0.17
Heinlein » Opencloud Reva » Version: 0.0.18

cpe:2.3:a:heinlein:opencloud_reva:0.0.18
Heinlein » Opencloud Reva » Version: 0.0.2

cpe:2.3:a:heinlein:opencloud_reva:0.0.2
Heinlein » Opencloud Reva » Version: 0.0.20

cpe:2.3:a:heinlein:opencloud_reva:0.0.20
Heinlein » Opencloud Reva » Version: 0.0.21

cpe:2.3:a:heinlein:opencloud_reva:0.0.21
Heinlein » Opencloud Reva » Version: 0.0.22

cpe:2.3:a:heinlein:opencloud_reva:0.0.22
Heinlein » Opencloud Reva » Version: 0.0.23

cpe:2.3:a:heinlein:opencloud_reva:0.0.23
Heinlein » Opencloud Reva » Version: 0.0.24

cpe:2.3:a:heinlein:opencloud_reva:0.0.24
Heinlein » Opencloud Reva » Version: 0.0.25

cpe:2.3:a:heinlein:opencloud_reva:0.0.25
Heinlein » Opencloud Reva » Version: 0.0.26

cpe:2.3:a:heinlein:opencloud_reva:0.0.26
Heinlein » Opencloud Reva » Version: 0.0.27

cpe:2.3:a:heinlein:opencloud_reva:0.0.27
Heinlein » Opencloud Reva » Version: 0.0.28

cpe:2.3:a:heinlein:opencloud_reva:0.0.28
Heinlein » Opencloud Reva » Version: 0.0.29

cpe:2.3:a:heinlein:opencloud_reva:0.0.29
Heinlein » Opencloud Reva » Version: 0.0.3

cpe:2.3:a:heinlein:opencloud_reva:0.0.3
Heinlein » Opencloud Reva » Version: 0.0.30

cpe:2.3:a:heinlein:opencloud_reva:0.0.30
Heinlein » Opencloud Reva » Version: 0.0.31

cpe:2.3:a:heinlein:opencloud_reva:0.0.31
Heinlein » Opencloud Reva » Version: 0.0.4

cpe:2.3:a:heinlein:opencloud_reva:0.0.4
Heinlein » Opencloud Reva » Version: 0.0.5

cpe:2.3:a:heinlein:opencloud_reva:0.0.5
Heinlein » Opencloud Reva » Version: 0.0.6

cpe:2.3:a:heinlein:opencloud_reva:0.0.6
Heinlein » Opencloud Reva » Version: 0.0.7

cpe:2.3:a:heinlein:opencloud_reva:0.0.7
Heinlein » Opencloud Reva » Version: 0.0.8

cpe:2.3:a:heinlein:opencloud_reva:0.0.8
Heinlein » Opencloud Reva » Version: 0.0.9

cpe:2.3:a:heinlein:opencloud_reva:0.0.9
Heinlein » Opencloud Reva » Version: 0.1.0

cpe:2.3:a:heinlein:opencloud_reva:0.1.0
Heinlein » Opencloud Reva » Version: 1.0.0

cpe:2.3:a:heinlein:opencloud_reva:1.0.0
Heinlein » Opencloud Reva » Version: 1.1.0

cpe:2.3:a:heinlein:opencloud_reva:1.1.0
Heinlein » Opencloud Reva » Version: 1.10.0

cpe:2.3:a:heinlein:opencloud_reva:1.10.0
Heinlein » Opencloud Reva » Version: 1.11.0

cpe:2.3:a:heinlein:opencloud_reva:1.11.0
Heinlein » Opencloud Reva » Version: 1.12.0

cpe:2.3:a:heinlein:opencloud_reva:1.12.0
Heinlein » Opencloud Reva » Version: 1.13.0

cpe:2.3:a:heinlein:opencloud_reva:1.13.0
Heinlein » Opencloud Reva » Version: 1.14.0

cpe:2.3:a:heinlein:opencloud_reva:1.14.0
Heinlein » Opencloud Reva » Version: 1.15.0

cpe:2.3:a:heinlein:opencloud_reva:1.15.0
Heinlein » Opencloud Reva » Version: 1.16.0

cpe:2.3:a:heinlein:opencloud_reva:1.16.0
Heinlein » Opencloud Reva » Version: 1.17.0

cpe:2.3:a:heinlein:opencloud_reva:1.17.0
Heinlein » Opencloud Reva » Version: 1.18.0

cpe:2.3:a:heinlein:opencloud_reva:1.18.0
Heinlein » Opencloud Reva » Version: 1.19.0

cpe:2.3:a:heinlein:opencloud_reva:1.19.0
Heinlein » Opencloud Reva » Version: 1.2.0

cpe:2.3:a:heinlein:opencloud_reva:1.2.0
Heinlein » Opencloud Reva » Version: 1.2.1

cpe:2.3:a:heinlein:opencloud_reva:1.2.1
Heinlein » Opencloud Reva » Version: 1.20.0

cpe:2.3:a:heinlein:opencloud_reva:1.20.0
Heinlein » Opencloud Reva » Version: 1.21.0

cpe:2.3:a:heinlein:opencloud_reva:1.21.0
Heinlein » Opencloud Reva » Version: 1.22.0

cpe:2.3:a:heinlein:opencloud_reva:1.22.0
Heinlein » Opencloud Reva » Version: 1.23.0

cpe:2.3:a:heinlein:opencloud_reva:1.23.0
Heinlein » Opencloud Reva » Version: 1.24.0

cpe:2.3:a:heinlein:opencloud_reva:1.24.0
Heinlein » Opencloud Reva » Version: 1.25.0

cpe:2.3:a:heinlein:opencloud_reva:1.25.0
Heinlein » Opencloud Reva » Version: 1.26.0

cpe:2.3:a:heinlein:opencloud_reva:1.26.0
Heinlein » Opencloud Reva » Version: 1.27.0

cpe:2.3:a:heinlein:opencloud_reva:1.27.0
Heinlein » Opencloud Reva » Version: 1.28.0

cpe:2.3:a:heinlein:opencloud_reva:1.28.0
Heinlein » Opencloud Reva » Version: 1.29.0

cpe:2.3:a:heinlein:opencloud_reva:1.29.0
Heinlein » Opencloud Reva » Version: 1.3.0

cpe:2.3:a:heinlein:opencloud_reva:1.3.0
Heinlein » Opencloud Reva » Version: 1.4.0

cpe:2.3:a:heinlein:opencloud_reva:1.4.0
Heinlein » Opencloud Reva » Version: 1.5.0

cpe:2.3:a:heinlein:opencloud_reva:1.5.0
Heinlein » Opencloud Reva » Version: 1.5.1

cpe:2.3:a:heinlein:opencloud_reva:1.5.1
Heinlein » Opencloud Reva » Version: 1.6.0

cpe:2.3:a:heinlein:opencloud_reva:1.6.0
Heinlein » Opencloud Reva » Version: 1.7.0

cpe:2.3:a:heinlein:opencloud_reva:1.7.0
Heinlein » Opencloud Reva » Version: 1.8.0

cpe:2.3:a:heinlein:opencloud_reva:1.8.0
Heinlein » Opencloud Reva » Version: 1.8.1

cpe:2.3:a:heinlein:opencloud_reva:1.8.1
Heinlein » Opencloud Reva » Version: 1.9.0

cpe:2.3:a:heinlein:opencloud_reva:1.9.0
Heinlein » Opencloud Reva » Version: 1.9.1

cpe:2.3:a:heinlein:opencloud_reva:1.9.1
Heinlein » Opencloud Reva » Version: 2.0.0

cpe:2.3:a:heinlein:opencloud_reva:2.0.0
Heinlein » Opencloud Reva » Version: 2.1.0

cpe:2.3:a:heinlein:opencloud_reva:2.1.0
Heinlein » Opencloud Reva » Version: 2.10.0

cpe:2.3:a:heinlein:opencloud_reva:2.10.0
Heinlein » Opencloud Reva » Version: 2.11.0

cpe:2.3:a:heinlein:opencloud_reva:2.11.0
Heinlein » Opencloud Reva » Version: 2.12.0

cpe:2.3:a:heinlein:opencloud_reva:2.12.0
Heinlein » Opencloud Reva » Version: 2.13.0

cpe:2.3:a:heinlein:opencloud_reva:2.13.0
Heinlein » Opencloud Reva » Version: 2.13.1

cpe:2.3:a:heinlein:opencloud_reva:2.13.1
Heinlein » Opencloud Reva » Version: 2.13.2

cpe:2.3:a:heinlein:opencloud_reva:2.13.2
Heinlein » Opencloud Reva » Version: 2.13.3

cpe:2.3:a:heinlein:opencloud_reva:2.13.3
Heinlein » Opencloud Reva » Version: 2.14.0

cpe:2.3:a:heinlein:opencloud_reva:2.14.0
Heinlein » Opencloud Reva » Version: 2.15.0

cpe:2.3:a:heinlein:opencloud_reva:2.15.0
Heinlein » Opencloud Reva » Version: 2.16.0

cpe:2.3:a:heinlein:opencloud_reva:2.16.0
Heinlein » Opencloud Reva » Version: 2.16.1

cpe:2.3:a:heinlein:opencloud_reva:2.16.1
Heinlein » Opencloud Reva » Version: 2.16.2

cpe:2.3:a:heinlein:opencloud_reva:2.16.2
Heinlein » Opencloud Reva » Version: 2.16.3

cpe:2.3:a:heinlein:opencloud_reva:2.16.3
Heinlein » Opencloud Reva » Version: 2.16.4

cpe:2.3:a:heinlein:opencloud_reva:2.16.4
Heinlein » Opencloud Reva » Version: 2.17.0

cpe:2.3:a:heinlein:opencloud_reva:2.17.0
Heinlein » Opencloud Reva » Version: 2.18.0

cpe:2.3:a:heinlein:opencloud_reva:2.18.0
Heinlein » Opencloud Reva » Version: 2.19.0

cpe:2.3:a:heinlein:opencloud_reva:2.19.0
Heinlein » Opencloud Reva » Version: 2.19.1

cpe:2.3:a:heinlein:opencloud_reva:2.19.1
Heinlein » Opencloud Reva » Version: 2.19.2

cpe:2.3:a:heinlein:opencloud_reva:2.19.2
Heinlein » Opencloud Reva » Version: 2.19.3

cpe:2.3:a:heinlein:opencloud_reva:2.19.3
Heinlein » Opencloud Reva » Version: 2.19.4

cpe:2.3:a:heinlein:opencloud_reva:2.19.4
Heinlein » Opencloud Reva » Version: 2.19.5

cpe:2.3:a:heinlein:opencloud_reva:2.19.5
Heinlein » Opencloud Reva » Version: 2.19.6

cpe:2.3:a:heinlein:opencloud_reva:2.19.6
Heinlein » Opencloud Reva » Version: 2.19.7

cpe:2.3:a:heinlein:opencloud_reva:2.19.7
Heinlein » Opencloud Reva » Version: 2.19.8

cpe:2.3:a:heinlein:opencloud_reva:2.19.8
Heinlein » Opencloud Reva » Version: 2.19.9

cpe:2.3:a:heinlein:opencloud_reva:2.19.9
Heinlein » Opencloud Reva » Version: 2.2.0

cpe:2.3:a:heinlein:opencloud_reva:2.2.0
Heinlein » Opencloud Reva » Version: 2.20.0

cpe:2.3:a:heinlein:opencloud_reva:2.20.0
Heinlein » Opencloud Reva » Version: 2.21.0

cpe:2.3:a:heinlein:opencloud_reva:2.21.0
Heinlein » Opencloud Reva » Version: 2.22.0

cpe:2.3:a:heinlein:opencloud_reva:2.22.0
Heinlein » Opencloud Reva » Version: 2.23.0

cpe:2.3:a:heinlein:opencloud_reva:2.23.0
Heinlein » Opencloud Reva » Version: 2.24.0

cpe:2.3:a:heinlein:opencloud_reva:2.24.0
Heinlein » Opencloud Reva » Version: 2.24.1

cpe:2.3:a:heinlein:opencloud_reva:2.24.1
Heinlein » Opencloud Reva » Version: 2.25.0

cpe:2.3:a:heinlein:opencloud_reva:2.25.0
Heinlein » Opencloud Reva » Version: 2.26.0

cpe:2.3:a:heinlein:opencloud_reva:2.26.0
Heinlein » Opencloud Reva » Version: 2.26.1

cpe:2.3:a:heinlein:opencloud_reva:2.26.1
Heinlein » Opencloud Reva » Version: 2.26.2

cpe:2.3:a:heinlein:opencloud_reva:2.26.2
Heinlein » Opencloud Reva » Version: 2.26.3

cpe:2.3:a:heinlein:opencloud_reva:2.26.3
Heinlein » Opencloud Reva » Version: 2.26.4

cpe:2.3:a:heinlein:opencloud_reva:2.26.4
Heinlein » Opencloud Reva » Version: 2.26.5

cpe:2.3:a:heinlein:opencloud_reva:2.26.5
Heinlein » Opencloud Reva » Version: 2.26.6

cpe:2.3:a:heinlein:opencloud_reva:2.26.6
Heinlein » Opencloud Reva » Version: 2.26.7

cpe:2.3:a:heinlein:opencloud_reva:2.26.7
Heinlein » Opencloud Reva » Version: 2.26.8

cpe:2.3:a:heinlein:opencloud_reva:2.26.8
Heinlein » Opencloud Reva » Version: 2.27.0

cpe:2.3:a:heinlein:opencloud_reva:2.27.0
Heinlein » Opencloud Reva » Version: 2.27.1

cpe:2.3:a:heinlein:opencloud_reva:2.27.1
Heinlein » Opencloud Reva » Version: 2.27.2

cpe:2.3:a:heinlein:opencloud_reva:2.27.2
Heinlein » Opencloud Reva » Version: 2.28.0

cpe:2.3:a:heinlein:opencloud_reva:2.28.0
Heinlein » Opencloud Reva » Version: 2.29.0

cpe:2.3:a:heinlein:opencloud_reva:2.29.0
Heinlein » Opencloud Reva » Version: 2.29.1

cpe:2.3:a:heinlein:opencloud_reva:2.29.1
Heinlein » Opencloud Reva » Version: 2.29.2

cpe:2.3:a:heinlein:opencloud_reva:2.29.2
Heinlein » Opencloud Reva » Version: 2.29.3

cpe:2.3:a:heinlein:opencloud_reva:2.29.3
Heinlein » Opencloud Reva » Version: 2.29.4

cpe:2.3:a:heinlein:opencloud_reva:2.29.4
Heinlein » Opencloud Reva » Version: 2.29.5

cpe:2.3:a:heinlein:opencloud_reva:2.29.5
Heinlein » Opencloud Reva » Version: 2.3.0

cpe:2.3:a:heinlein:opencloud_reva:2.3.0
Heinlein » Opencloud Reva » Version: 2.3.1

cpe:2.3:a:heinlein:opencloud_reva:2.3.1
Heinlein » Opencloud Reva » Version: 2.30.0

cpe:2.3:a:heinlein:opencloud_reva:2.30.0
Heinlein » Opencloud Reva » Version: 2.31.0

cpe:2.3:a:heinlein:opencloud_reva:2.31.0
Heinlein » Opencloud Reva » Version: 2.32.0

cpe:2.3:a:heinlein:opencloud_reva:2.32.0
Heinlein » Opencloud Reva » Version: 2.33.0

cpe:2.3:a:heinlein:opencloud_reva:2.33.0
Heinlein » Opencloud Reva » Version: 2.33.1

cpe:2.3:a:heinlein:opencloud_reva:2.33.1
Heinlein » Opencloud Reva » Version: 2.34.0

cpe:2.3:a:heinlein:opencloud_reva:2.34.0
Heinlein » Opencloud Reva » Version: 2.35.0

cpe:2.3:a:heinlein:opencloud_reva:2.35.0
Heinlein » Opencloud Reva » Version: 2.36.0

cpe:2.3:a:heinlein:opencloud_reva:2.36.0
Heinlein » Opencloud Reva » Version: 2.37.0

cpe:2.3:a:heinlein:opencloud_reva:2.37.0
Heinlein » Opencloud Reva » Version: 2.38.0

cpe:2.3:a:heinlein:opencloud_reva:2.38.0
Heinlein » Opencloud Reva » Version: 2.39.0

cpe:2.3:a:heinlein:opencloud_reva:2.39.0
Heinlein » Opencloud Reva » Version: 2.39.1

cpe:2.3:a:heinlein:opencloud_reva:2.39.1
Heinlein » Opencloud Reva » Version: 2.39.2

cpe:2.3:a:heinlein:opencloud_reva:2.39.2
Heinlein » Opencloud Reva » Version: 2.39.3

cpe:2.3:a:heinlein:opencloud_reva:2.39.3
Heinlein » Opencloud Reva » Version: 2.4.0

cpe:2.3:a:heinlein:opencloud_reva:2.4.0
Heinlein » Opencloud Reva » Version: 2.4.1

cpe:2.3:a:heinlein:opencloud_reva:2.4.1
Heinlein » Opencloud Reva » Version: 2.40.0

cpe:2.3:a:heinlein:opencloud_reva:2.40.0
Heinlein » Opencloud Reva » Version: 2.40.1

cpe:2.3:a:heinlein:opencloud_reva:2.40.1
Heinlein » Opencloud Reva » Version: 2.40.2

cpe:2.3:a:heinlein:opencloud_reva:2.40.2
Heinlein » Opencloud Reva » Version: 2.41.0

cpe:2.3:a:heinlein:opencloud_reva:2.41.0
Heinlein » Opencloud Reva » Version: 2.42.0

cpe:2.3:a:heinlein:opencloud_reva:2.42.0
Heinlein » Opencloud Reva » Version: 2.42.1

cpe:2.3:a:heinlein:opencloud_reva:2.42.1
Heinlein » Opencloud Reva » Version: 2.42.2

cpe:2.3:a:heinlein:opencloud_reva:2.42.2
Heinlein » Opencloud Reva » Version: 2.5.0

cpe:2.3:a:heinlein:opencloud_reva:2.5.0
Heinlein » Opencloud Reva » Version: 2.5.1

cpe:2.3:a:heinlein:opencloud_reva:2.5.1
Heinlein » Opencloud Reva » Version: 2.6.0

cpe:2.3:a:heinlein:opencloud_reva:2.6.0
Heinlein » Opencloud Reva » Version: 2.6.1

cpe:2.3:a:heinlein:opencloud_reva:2.6.1
Heinlein » Opencloud Reva » Version: 2.7.0

cpe:2.3:a:heinlein:opencloud_reva:2.7.0
Heinlein » Opencloud Reva » Version: 2.7.1

cpe:2.3:a:heinlein:opencloud_reva:2.7.1
Heinlein » Opencloud Reva » Version: 2.7.2

cpe:2.3:a:heinlein:opencloud_reva:2.7.2
Heinlein » Opencloud Reva » Version: 2.7.3

cpe:2.3:a:heinlein:opencloud_reva:2.7.3
Heinlein » Opencloud Reva » Version: 2.7.4

cpe:2.3:a:heinlein:opencloud_reva:2.7.4
Heinlein » Opencloud Reva » Version: 2.8.0

cpe:2.3:a:heinlein:opencloud_reva:2.8.0
Heinlein » Opencloud Reva » Version: 2.9.0

cpe:2.3:a:heinlein:opencloud_reva:2.9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-23989

Products

Pricing

Contact Us