Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-pveu-9933-2kag
Vulnerability ID VCID-pveu-9933-2kag
Aliases CVE-2020-26234
GHSA-44cw-p2hm-gpf6
Summary
Status Published
Exploitability 0.5
Weighted Severity 8.0
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (4)
CWE-297 Improper Validation of Certificate with Host Mismatch
CWE-1035 OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-346 Origin Validation Error
CWE-937 OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
System Score Found at
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2020-26234
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2020-26234
epss 0.00079 https://api.first.org/data/v1/epss?cve=CVE-2020-26234
cvssv3.1_qr HIGH https://github.com/advisories/GHSA-44cw-p2hm-gpf6
cvssv3.1 4.8 https://github.com/opencast/opencast/commit/4225bf90af74557deaf8fb6b80b0705c9621acfc
generic_textual HIGH https://github.com/opencast/opencast/commit/4225bf90af74557deaf8fb6b80b0705c9621acfc
cvssv3.1 4.8 https://github.com/opencast/opencast/security/advisories/GHSA-44cw-p2hm-gpf6
cvssv3.1_qr HIGH https://github.com/opencast/opencast/security/advisories/GHSA-44cw-p2hm-gpf6
generic_textual HIGH https://github.com/opencast/opencast/security/advisories/GHSA-44cw-p2hm-gpf6
cvssv3.1 4.8 https://nvd.nist.gov/vuln/detail/CVE-2020-26234
generic_textual HIGH https://nvd.nist.gov/vuln/detail/CVE-2020-26234
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2020-26234
https://github.com/opencast/opencast/commit/4225bf90af74557deaf8fb6b80b0705c9621acfc
https://github.com/opencast/opencast/security/advisories/GHSA-44cw-p2hm-gpf6
https://nvd.nist.gov/vuln/detail/CVE-2020-26234
GHSA-44cw-p2hm-gpf6 https://github.com/advisories/GHSA-44cw-p2hm-gpf6
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N Found at https://github.com/opencast/opencast/commit/4225bf90af74557deaf8fb6b80b0705c9621acfc
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N Found at https://github.com/opencast/opencast/security/advisories/GHSA-44cw-p2hm-gpf6
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2020-26234
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.23464
EPSS Score 0.00079
Published At June 11, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-12T01:54:34.509185+00:00 EPSS Importer Import https://epss.cyentia.com/epss_scores-current.csv.gz 38.6.0