VYPR

Go modules package

github.com/opencloud-eu/reva/v2

pkg:golang/github.com/opencloud-eu/reva/v2

Vulnerabilities (1)

  • CVE-2026-23989Feb 6, 2026
    affected < 2.40.3fixed 2.40.3

    REVA is an interoperability platform. Prior to 2.42.3 and 2.40.3, a bug in the GRPC authorization middleware of the "Reva" component of OpenCloud allows a malicious user to bypass the scope verification of a public link. By exploiting this via the the "archiver" service this can