Every CVE whose affected-product data names Openmicroscopy Omero, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2014-7198 — CVSS 8.8 (high): OMERO before 5.0.6 has multiple CSRF vulnerabilities because the framework for OMERO's web interface lacks CSRF protection.
CVE-2017-1000438 — CVSS 8.3 (high): In OMERO 5.3.3 or earlier a user could create an OriginalFile and adjust its path such that it now points to another user's file on the…
CVE-2018-1000633 — CVSS 7.2 (high): The Open Microscopy Environment OMERO.web version prior to 5.4.7 contains an Information Exposure Through Log Files vulnerability in the…
CVE-2018-1000634 — CVSS 7.2 (high): The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains an Improper Access Control vulnerability in User management…
CVE-2018-1000635 — CVSS 6.7 (medium): The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains a Information Exposure Through Sent Data vulnerability in…