VYPR

Omero Server

by Ome

Source repositories

CVEs (4)

  • CVE-2018-1000634HigAug 20, 2018
    risk 0.47cvss 7.2epss 0.01

    The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains an Improper Access Control vulnerability in User management that can result in administrative user with privilege restrictions logging in as a more powerful administrator. This attack appear to be…

  • CVE-2018-1000635MedAug 20, 2018
    risk 0.44cvss 6.7epss 0.00

    The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains a Information Exposure Through Sent Data vulnerability in OMERO.server that can result in an Attacker gaining full administrative access to server and may be able to disable it. This vulnerability…

  • CVE-2019-9943Jun 17, 2020
    risk 0.00cvss epss 0.01

    In ome.services.graphs.GraphTraversal.findObjectDetails in Open Microscopy Environment OMERO.server 5.1.0 through 5.6.0, permissions on OMERO model objects may be circumvented during certain operations such as move and delete, because group permissions are mishandled.

  • CVE-2019-9944Jun 17, 2020
    risk 0.00cvss epss 0.01

    In Open Microscopy Environment OMERO.server 5.0.0 through 5.6.0, the reading of files from imported image filesets may circumvent OMERO permissions restrictions. This occurs because the Bio-Formats feature allows an image file to have embedded pathnames.