rpm package
opensuse/opencloud-server&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/opencloud-server&distro=openSUSE%20Tumbleweed
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-23989 | — | < 5.0.2-1.1 | 5.0.2-1.1 | Feb 6, 2026 | REVA is an interoperability platform. Prior to 2.42.3 and 2.40.3, a bug in the GRPC authorization middleware of the "Reva" component of OpenCloud allows a malicious user to bypass the scope verification of a public link. By exploiting this via the the "archiver" service this can |
- CVE-2026-23989Feb 6, 2026affected < 5.0.2-1.1fixed 5.0.2-1.1
REVA is an interoperability platform. Prior to 2.42.3 and 2.40.3, a bug in the GRPC authorization middleware of the "Reva" component of OpenCloud allows a malicious user to bypass the scope verification of a public link. By exploiting this via the the "archiver" service this can