Vulnerabilities > Apereo > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-12 | CVE-2018-16153 | Insufficiently Protected Credentials vulnerability in Apereo Opencast An issue was discovered in Apereo Opencast 4.x through 10.x before 10.6. | 7.5 |
| 2023-06-27 | CVE-2023-28857 | Insufficiently Protected Credentials vulnerability in Apereo Central Authentication Service Apereo CAS is an open source multilingual single sign-on solution for the web. | 7.5 |
| 2022-11-01 | CVE-2022-39369 | Improper Validation of Specified Type of Input vulnerability in multiple products phpCAS is an authentication library that allows PHP applications to easily authenticate users via a Central Authentication Service (CAS) server. | 8.0 |
| 2015-02-10 | CVE-2015-1169 | Injection vulnerability in Apereo Central Authentication Service Apereo Central Authentication Service (CAS) Server before 3.5.3 allows remote attackers to conduct LDAP injection attacks via a crafted username, as demonstrated by using a wildcard and a valid password to bypass LDAP authentication. | 7.5 |