VYPR

rpm package

opensuse/opencloud-server&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/opencloud-server&distro=openSUSE%20Tumbleweed

Vulnerabilities (1)

  • CVE-2026-23989Feb 6, 2026
    affected < 5.0.2-1.1fixed 5.0.2-1.1

    REVA is an interoperability platform. Prior to 2.42.3 and 2.40.3, a bug in the GRPC authorization middleware of the "Reva" component of OpenCloud allows a malicious user to bypass the scope verification of a public link. By exploiting this via the the "archiver" service this can