CyberSec.Space Logo
返回 CVE 浏览器

CVE-2019-9944

HIGH
7.5
CVSS Severity Score
EPSS Score0.0350%
EPSS Percentile21.38th
Published2020年6月17日
Last Modified2024年11月21日

Vulnerability Description

In Open Microscopy Environment OMERO.server 5.0.0 through 5.6.0, the reading of files from imported image filesets may circumvent OMERO permissions restrictions. This occurs because the Bio-Formats feature allows an image file to have embedded pathnames.

Affected Platforms (CPE)

📦
Openmicroscopy

Omero.server

>= 5.0.0 and <= 5.6.0

References & Advisories

🔗 https://www.openmicroscopy.org/security/advisories/2019-SV1/
🔗 https://www.openmicroscopy.org/security/advisories/2019-SV1/

相关漏洞威胁

CVE-2019-002010.0

Juniper ATP ships with hard coded credentials in the Web Collector instance which gives an attacker the ability to take full contr...

CVE-2019-002210.0

Juniper ATP ships with hard coded credentials in the Cyphort Core instance which gives an attacker the ability to take full contro...

CVE-2019-390510.0

Zoho ManageEngine ADSelfService Plus 5.x before build 5703 has SSRF.

CVE-2019-1264310.0

A vulnerability in the Cisco REST API virtual service container for Cisco IOS XE Software could allow an unauthenticated, remote a...