Opencast Authentication Vulnerability: Disclosure of System Digest Credentials

Opencast Authentication Vulnerability: Disclosure of System Digest Credentials

CVE-2018-16153 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

An issue was discovered in Apereo Opencast 4.x through 10.x before 10.6. It sends system digest credentials during authentication attempts to arbitrary external services in some situations.

Learn more about our External Network Penetration Testing.