Openmicroscopy Omero-web — known CVE vulnerabilities
Every CVE whose affected-product data names Openmicroscopy Omero-web, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2021-41132 — CVSS 9.8 (critical): OMERO.web provides a web based client and plugin infrastructure. In versions prior to 5.11.0, a variety of templates do not perform proper…
CVE-2024-35180 — CVSS 6.1 (medium): OMERO.web provides a web based client and plugin infrastructure. There is currently no escaping or validation of the `callback` parameter…
CVE-2025-54791 — CVSS 5.3 (medium): OMERO.web provides a web based client and plugin infrastructure. Prior to version 5.29.2, if an error occurred when resetting a user's…