An issue was discovered in Apereo Opencast 4.x through 10.x before 10.6. It sends system digest credentials during authentication attempts to arbitrary external services in some situations.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| org.opencastproject:opencast-common(Maven) | 0 | 10.6 | N/A |
CVSS Metrics
