apereo
Cloud & SaaSoss-project
Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting apereo.
- CVE-2026-32985Xerte Online Toolkits <= 3.14 Unauthenticated Template Import Arbitrary File Upload Leading to Remote Code Execution9.8
- CVE-2025-61906Opencast's editor accidentally publishes videos/overwrites publications #16264.3
- CVE-2025-61788Opencast Paella Player 7 vulnerable to Cross-Site-Scripting5.4
- CVE-2025-55202Opencast has a partial path traversal vulnerability in UI config5.3
- CVE-2025-54380Opencast still publishes global system account credentials6.5
- CVE-2025-3986Apereo CAS CasConfigurationMetadataServerController.java redos4.3
- CVE-2025-3985Apereo CAS ResponseEntity redos2.7
- CVE-2025-3984Apereo CAS Groovy Code RegisteredServiceSimpleFormController.java saveService code injection5.0
- CVE-2024-52797Searching Opencast may cause a denial of service6.5
- CVE-2024-11209Apereo CAS 2FA login improper authentication6.3
- CVE-2024-11208Apereo CAS login session expiration3.7
- CVE-2024-11207Apereo CAS login redirect4.3
- CVE-2024-4399CAS <= 1.0.0 - Unauthenticated SSRF9.1
- CVE-2018-16153An issue was discovered in Apereo Opencast 4.x through 10.x before 10.6. It sends system digest credentials during authentication attempts to arbitrary external services in some situations.7.5
- CVE-2023-4612MFA bypass in Apereo CAS9.8