Login Sign Up

Apereo Security Vulnerabilities (CVEs)

Track 10 security vulnerabilities affecting Apereo products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

3 Critical
1 High
6 Medium
🔔 Get Alerts for Apereo
CVE-2025-61788 5.4

Opencast versions before 17.8 and 18.2 have a stored cross-site scripting (XSS) vulnerability where user-supplied metadata (like titles and descriptio...

Oct 8, 2025
CVE-2025-61906 4.3

Opencast's editor may publish videos without user notification when users with write access click 'Save & Publish' then select 'Save' instead. This co...

Oct 8, 2025
CVE-2025-54380 6.5

Opencast versions before 17.6 incorrectly send hashed global system account credentials to attacker-controlled URLs when fetching mediapackage element...

Jul 26, 2025
CVE-2025-3986 4.3

This vulnerability in Apereo CAS 5.2.6 involves inefficient regular expression complexity in the CasConfigurationMetadataServerController.java file, a...

Apr 27, 2025
CVE-2025-3984 5.0

This critical vulnerability in Apereo CAS 5.2.6 allows remote attackers to execute arbitrary code through the Groovy Code Handler component. The vulne...

Apr 27, 2025
CVE-2024-11209 6.3

This vulnerability in Apereo CAS 6.6 allows attackers to bypass two-factor authentication (2FA) on the /login?service endpoint, potentially leading to...

Nov 14, 2024
CVE-2024-4399 9.1

This vulnerability allows unauthenticated attackers to perform Server-Side Request Forgery (SSRF) attacks by exploiting improper input validation in a...

May 23, 2024
CVE-2023-4612 9.8

CVE-2023-4612 is an authentication bypass vulnerability in Apereo CAS that allows attackers to circumvent Multi-Factor Authentication by manipulating ...

Nov 9, 2023
CVE-2021-43821 9.9

Opencast versions before 9.10 and 10.6 allow attackers with media ingestion privileges to include local file URLs in media packages, exposing sensitiv...

Dec 14, 2021
CVE-2021-32623 8.1

CVE-2021-32623 is a billion laughs attack vulnerability in Opencast that allows authenticated users with ingest privileges to execute a permanent deni...

Jun 16, 2021

Why Monitor Apereo Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 10+ known vulnerabilities affecting Apereo products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Apereo packages in under 60 seconds. No agents required - completely agentless scanning that works across Apereo deployments.

Free vulnerability database: Access detailed information about every Apereo CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

  • Register free account & add your servers
  • Run one-time scan or schedule automatic monitoring (every 1-24 hours)
  • Receive instant alerts when new Apereo CVEs affect your systems
  • Access dashboard with severity breakdown & fix instructions
Start Monitoring Apereo CVEs Free