CVE-2018-16153
7.5HIGHAn issue was discovered in Apereo Opencast 4.x through 10.x before 10.6. It sends system digest credentials during authentication attempts to arbitrary external services in some situations.
Published: 12/12/2023Updated: 5/27/2025
Description
An issue was discovered in Apereo Opencast 4.x through 10.x before 10.6. It sends system digest credentials during authentication attempts to arbitrary external services in some situations.
AI AnalysisPowered by AI
Affected Products
apereoopencast
References
- https://docs.opencast.org/r/10.x/admin/#changelogRelease Notes
- https://github.com/advisories/GHSA-hcxx-mp6g-6gr9Third Party Advisory
- https://github.com/opencast/opencast/commit/776d5588f39c61eb04c03bb955416c4f77629d51Patch
- https://www.apereo.org/projects/opencast/newsRelease Notes
- https://docs.opencast.org/r/10.x/admin/#changelogRelease Notes
- https://github.com/advisories/GHSA-hcxx-mp6g-6gr9Third Party Advisory
- https://github.com/opencast/opencast/commit/776d5588f39c61eb04c03bb955416c4f77629d51Patch
- https://www.apereo.org/projects/opencast/newsRelease Notes