Opencast 2.3.2 and older versions are vulnerable to script injections through media and metadata in the player and media module resulting in arbitrary code execution, fixed in 2.3.3 and 3.0.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| org.opencastproject:base(Maven) | 0 | 2.3.3 | N/A |
CVSS Metrics
