Vulnerabilities > Onedev Project > Onedev > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-09-13 CVE-2022-39206 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Onedev Project Onedev
Onedev is an open source, self-hosted Git Server with CI/CD and Kanban.
network
low complexity
onedev-project CWE-610
critical
 9.9
9.9
2022-09-13 CVE-2022-39205 Improper Authentication vulnerability in Onedev Project Onedev
Onedev is an open source, self-hosted Git Server with CI/CD and Kanban.
network
low complexity
onedev-project CWE-287
critical
 9.8
9.8
2021-01-15 CVE-2021-21244 Code Injection vulnerability in Onedev Project Onedev
OneDev is an all-in-one devops platform.
network
low complexity
onedev-project CWE-94
critical
 9.8
9.8