CyberSec.Space Logo
返回 CVE 浏览器

CVE-2019-9943

HIGH
7.5
CVSS Severity Score
EPSS Score0.1810%
EPSS Percentile30.40th
Published2020年6月17日
Last Modified2024年11月21日

Vulnerability Description

In ome.services.graphs.GraphTraversal.findObjectDetails in Open Microscopy Environment OMERO.server 5.1.0 through 5.6.0, permissions on OMERO model objects may be circumvented during certain operations such as move and delete, because group permissions are mishandled.

Affected Platforms (CPE)

📦
Openmicroscopy

Omero.server

>= 5.1.0 and <= 5.6.0

References & Advisories

🔗 https://www.openmicroscopy.org/security/advisories/2019-SV2/
🔗 https://www.openmicroscopy.org/security/advisories/2019-SV2/

相关漏洞威胁

CVE-2019-725710.0

Linear eMerge E3-Series devices allow Unrestricted File Upload.

CVE-2019-1302010.0

The fetch API in Tightrope Media Carousel before 7.1.3 has CarouselAPI/v0/fetch?url= SSRF. This has two potential areas for abuse....

CVE-2019-726810.0

Linear eMerge 50P/5000P devices allow Unauthenticated File Upload.

CVE-2019-548510.0

NPM package gitlabhook version 0.0.17 is vulnerable to a Command Injection vulnerability. Arbitrary commands can be injected throu...