Gregorydlogan

**Name of the Vulnerable Software and Affected Versions** Opencast versions prior to 12.5 **Description** The vulnerability in Opencast's Paella authentication page allows attackers to redirect authenticated users to arbitrary URLs, potentially facilitating phishing attacks or other security issues. This could enable attackers to redirect users to sites outside of their Opencast install. **Recommendations** For versions prior to 12.5, update to Opencast 12.5 or newer to resolve the issue. As a temporary workaround, consider restricting access to the Paella authentication page until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Apereo Opencast versions 4.x through 10.x before 10.6 **Description** An issue was discovered in Apereo Opencast where it sends system digest credentials during authentication attempts to arbitrary external services in some situations. This occurs when Opencast tries to authenticate against any external services listed in a media package, sending the global system user's credentials, regardless of the target being part of the Opencast cluster or not. Although previous mitigations prevented clear text authentications for such requests, hashed credentials can still be broken with enough malicious intent. **Recommendations** For Apereo Opencast versions 4.x through 10.x before 10.6, update to version 10.6, which now sends authentication requests only against servers that are part of the Opencast cluster, preventing external services from getting any form of authentication attempt. At the moment, there is no other information about additional mitigation measures for these versions.

**Name of the Vulnerable Software and Affected Versions** Opencast versions prior to 9.10 Opencast versions prior to 10.6 **Description** The issue allows attackers to include local files from Opencast's host machines and make them available via the web interface. This is possible because Opencast would open and include local files during ingests, allowing attackers to extract secrets from the host machine. An attacker would need to have the privileges required to add new media to exploit this. These privileges are often widely given. The issue can be mitigated by narrowing down the read access Opencast has to files on the file system using UNIX permissions or mandatory access control systems like SELinux. **Recommendations** For Opencast versions prior to 9.10, update to version 9.10 or later. For Opencast versions prior to 10.6, update to version 10.6 or later. As a temporary workaround, consider narrowing down the read access Opencast has to files on the file system using UNIX permissions or mandatory access control systems like SELinux.