VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Onedev Project
>
Onedev
> 4.0.4
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-02-08
CVE-2023-24828
Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability in Onedev Project Onedev
Onedev is a self-hosted Git Server with CI/CD and Kanban.
network
low complexity
onedev-project
CWE-338
8.8
8.8
2022-09-13
CVE-2022-39205
Improper Authentication vulnerability in Onedev Project Onedev
Onedev is an open source, self-hosted Git Server with CI/CD and Kanban.
network
low complexity
onedev-project
CWE-287
critical
9.8
9.8
2022-09-13
CVE-2022-39206
Externally Controlled Reference to a Resource in Another Sphere vulnerability in Onedev Project Onedev
Onedev is an open source, self-hosted Git Server with CI/CD and Kanban.
network
low complexity
onedev-project
CWE-610
critical
9.9
9.9
2022-09-13
CVE-2022-39207
Incorrect Permission Assignment for Critical Resource vulnerability in Onedev Project Onedev
Onedev is an open source, self-hosted Git Server with CI/CD and Kanban.
network
low complexity
onedev-project
CWE-732
5.4
5.4
2022-09-13
CVE-2022-39208
Files or Directories Accessible to External Parties vulnerability in Onedev Project Onedev
Onedev is an open source, self-hosted Git Server with CI/CD and Kanban.
network
low complexity
onedev-project
CWE-552
7.5
7.5
2021-06-01
CVE-2021-32651
LDAP Injection vulnerability in Onedev Project Onedev
OneDev is a development operations platform.
network
onedev-project
CWE-90
4.3
4.3