CVE-2022-41965

Name of the Vulnerable Software and Affected Versions Opencast versions prior to 12.5

Description The vulnerability in Opencast's Paella authentication page allows attackers to redirect authenticated users to arbitrary URLs, potentially facilitating phishing attacks or other security issues. This could enable attackers to redirect users to sites outside of their Opencast install.

Recommendations For versions prior to 12.5, update to Opencast 12.5 or newer to resolve the issue. As a temporary workaround, consider restricting access to the Paella authentication page until a patch is applied.