org.opencastproject:base
Maven2 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting org.opencastproject:basepage 1 of 1
- CVE-2017-1000217HIGHCVSS 8.8EG 8.8✓ Fixed in 2.3.32017-11-17
Opencast 2.3.2 and older versions are vulnerable to script injections through media and metadata in the player and media module resulting in arbitrary code execution, fixed in 2.3.3 and 3.0.
- CVE-2020-5230HIGHCVSS 7.7EG 7.7✓ Fixed in 8.12020-01-30
vulnerable: 8.0
Opencast before 8.1 and 7.6 allows almost arbitrary identifiers for media packages and elements to be used. This can be problematic for operation and security since such identifiers are sometimes used for file system operations which may l…
Check whether org.opencastproject:base is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for org.opencastproject:base CVEs against the assets you own.
Start Free Scan →