org.opencastproject:opencast-ingest-service-impl

Maven3 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting org.opencastproject:opencast-ingest-service-implpage 1 of 1

CVE-2021-43821CRITICALCVSS 9.9EG 9.9✓ Fixed in 10.6
2021-12-14
vulnerable: 10.0 ... 9.9 (38 versions)
Opencast is an Open Source Lecture Capture & Video Management for Education. Opencast before version 9.10 or 10.6 allows references to local file URLs in ingested media packages, allowing attackers to include local files from Opencast's ho…
CVE-2022-29237MEDIUMCVSS 5.4EG 5.4✓ Fixed in 11.7
2022-05-24
vulnerable: 11.0 ... 11.6 (7 versions)
Opencast is a free and open source solution for automated video capture and distribution at scale. Prior to Opencast 10.14 and 11.7, users could pass along URLs for files belonging to organizations other than the user's own, which Opencast…
CVE-2025-54380MEDIUMCVSS 6.5EG 6.5✓ Fixed in 17.6
2025-07-26
vulnerable: 10.0 ... 9.9 (117 versions)
Opencast is a free, open-source platform to support the management of educational audio and video content. Prior to version 17.6, Opencast would incorrectly send the hashed global system account credentials (ie: org.opencastproject.securit…

Check whether org.opencastproject:opencast-ingest-service-impl is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for org.opencastproject:opencast-ingest-service-impl CVEs against the assets you own.

Start Free Scan →