Every CVE whose affected-product data names Osstech Openam, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2017-10873 — CVSS 8.1 (high): OpenAM (Open Source Edition) allows an attacker to bypass authentication and access unauthorized contents via unspecified vectors. Note…
CVE-2018-0696 — CVSS 7.5 (high): OpenAM (Open Source Edition) 13.0 and later does not properly manage sessions, which allows remote authenticated attackers to change the…
CVE-2019-5915 — CVSS 6.1 (medium): Open redirect vulnerability in OpenAM (Open Source Edition) 13.0 allows remote attackers to redirect users to arbitrary web sites and…
CVE-2022-31735 — CVSS 6.1 (medium): OpenAM Consortium Edition version 14.0.0 provided by OpenAM Consortium contains an open redirect vulnerability (CWE-601). When accessing an…