PT-2018-5210 · Open Microscopy Environment · Omero

Published

2018-01-02

Updated

2019-10-03

CVE-2017-1000438

CVSS v3.1

8.3

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

Name of the Vulnerable Software and Affected Versions OMERO versions 5.3.3 and earlier

Description A user could create an OriginalFile and adjust its path to point to another user's file on the underlying filesystem, then manipulate the user's data.

Recommendations For OMERO versions 5.3.3 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2017-1000438

Affected Products

Omero

PT-2018-5210 · Open Microscopy Environment · Omero

CVE-2017-1000438

Related Identifiers

Affected Products

References · 3