Vulnerabilities > Onedev Project > Onedev

DATE CVE VULNERABILITY TITLE RISK
2023-02-08 CVE-2023-24828 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability in Onedev Project Onedev
Onedev is a self-hosted Git Server with CI/CD and Kanban.
network
low complexity
onedev-project CWE-338
8.8
8.8
2022-09-13 CVE-2022-39205 Improper Authentication vulnerability in Onedev Project Onedev
Onedev is an open source, self-hosted Git Server with CI/CD and Kanban.
network
low complexity
onedev-project CWE-287
critical
 9.8
9.8
2022-09-13 CVE-2022-39206 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Onedev Project Onedev
Onedev is an open source, self-hosted Git Server with CI/CD and Kanban.
network
low complexity
onedev-project CWE-610
critical
 9.9
9.9
2022-09-13 CVE-2022-39207 Incorrect Permission Assignment for Critical Resource vulnerability in Onedev Project Onedev
Onedev is an open source, self-hosted Git Server with CI/CD and Kanban.
network
low complexity
onedev-project CWE-732
5.4
5.4
2022-09-13 CVE-2022-39208 Files or Directories Accessible to External Parties vulnerability in Onedev Project Onedev
Onedev is an open source, self-hosted Git Server with CI/CD and Kanban.
network
low complexity
onedev-project CWE-552
7.5
7.5
2021-06-01 CVE-2021-32651 LDAP Injection vulnerability in Onedev Project Onedev
OneDev is a development operations platform. 		4.3
4.3
2021-01-15 CVE-2021-21251 Path Traversal vulnerability in Onedev Project Onedev
OneDev is an all-in-one devops platform.
network
low complexity
onedev-project CWE-22
6.5
6.5
2021-01-15 CVE-2021-21250 File and Directory Information Exposure vulnerability in Onedev Project Onedev
OneDev is an all-in-one devops platform.
network
low complexity
onedev-project CWE-538
4.0
4.0
2021-01-15 CVE-2021-21249 Deserialization of Untrusted Data vulnerability in Onedev Project Onedev
OneDev is an all-in-one devops platform.
network
low complexity
onedev-project CWE-502
6.5
6.5
2021-01-15 CVE-2021-21248 Code Injection vulnerability in Onedev Project Onedev
OneDev is an all-in-one devops platform.
network
low complexity
onedev-project CWE-94
8.8
8.8