Vulnerabilities > Apereo > Central Authentication Service > 6.6.0

DATE CVE VULNERABILITY TITLE RISK
2024-11-14 CVE-2024-11208 Unspecified vulnerability in Apereo Central Authentication Service 6.6.0
A vulnerability was found in Apereo CAS 6.6 and classified as problematic.
network
high complexity
apereo
8.1
8.1
2024-11-14 CVE-2024-11209 Improper Authentication vulnerability in Apereo Central Authentication Service 6.6.0
A vulnerability was found in Apereo CAS 6.6.
network
low complexity
apereo CWE-287
critical
 9.8
9.8
2023-11-09 CVE-2023-4612 Improper Authentication vulnerability in Apereo Central Authentication Service
Improper Authentication vulnerability in Apereo CAS in jakarta.servlet.http.HttpServletRequest.getRemoteAddr method allows Multi-Factor Authentication bypass.This issue affects CAS: through 7.0.0-RC7.
network
low complexity
apereo CWE-287
critical
 9.8
9.8
2023-06-27 CVE-2023-28857 Insufficiently Protected Credentials vulnerability in Apereo Central Authentication Service
Apereo CAS is an open source multilingual single sign-on solution for the web.
network
low complexity
apereo CWE-522
7.5
7.5