Skip to content

RadicalNotion.AI

We do not sell or share your personal information

© 2026 RadicalNotion.AI

Security Data

CWE Directory
CAPEC Directory
CNA Directory
CNA Report Cards
Data Sources

Calculators

CVSS Calculator
CVSS 4.0
CVSS 3.1
CVSS 3.0
CVSS 2.0

Platform

My Vulnerabilities
Insights
Notifications
Account
Pricing

Learn

All guides
What is a CVE?
What is CVSS?
The CISA KEV catalog
What is EPSS?

Company

About us
Blog
Book a demo

Get Started

Sign up
Log in

Legal

Privacy
Terms

Security data

Weaknesses (CWE)The MITRE CWE weakness catalog
Attack Patterns (CAPEC)MITRE CAPEC attack patterns
CNAsNumbering authorities + report cards
VendorsVulnerabilities by vendor

Tools

CVSS CalculatorScore CVSS 4.0, 3.1, 3.0 & 2.0

Resources

LearnPlain-English security guides
Data SourcesHow we source CVE data

About Us Blog Pricing Book a Demo

Log in

Home
Vendors
Apereo
Cas Server

apereo cas_server Vulnerabilities: CVEs, CISA KEV & Security Advisories

2 CVEs

apereo cas_server Vulnerabilities

CVE security advisories and vulnerability history for cas_server by apereo.

2

Total CVEs

Published

0

In CISA KEV

Exploited in the wild

2

Public exploits

With known exploit

6.3

Avg CVSS

2024–2024

Last updated November 14, 2024

Overview

apereo cas_server has 2 published CVE records since 2024, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 2 have a known public exploit. The average CVSS base score across scored CVEs is 6.3.

This page aggregates every publicly disclosed vulnerability (CVE) affecting apereo cas_server, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.

Severity and exploitation

How the CVSS severity of apereo cas_server's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical0

High0

Medium2

Low0

In CISA’s Known Exploited Vulnerabilities catalog

0

None of apereo cas_server's CVEs are currently listed in CISA's KEV catalog.

Public exploits

2

2 of apereo cas_server's CVEs have a known public exploit available.

Affected versions and CVEs

Browse every apereo cas_server version named in a CVE, then pick one to see only the CVEs that affect it.

No specific affected versions are recorded for apereo cas_server; the CVEs below apply to the product without a version pin.

2 CVEs

Sort

Medium vulnerability · 2024-11-14
CVE-2024-11209
Public exploit
CWE-287
Medium · CVSS 6.3
EPSS 0.2% (48th pct)2024-11-14
Apereo CAS login session expiration
CVE-2024-11208
Public exploit
CWE-613
Medium · CVSS 6.3
EPSS 0.3% (57th pct)2024-11-14

Common weakness types

The CWE weakness categories most often found in apereo cas_server CVEs. Follow any weakness for its full explanation.

CWE-287Improper Authentication1 CVE
CWE-613Insufficient Session Expiration1 CVE

Other apereo products

Browse vulnerabilities for other products by apereo.

opencast20 CVEs central authentication service13 CVEs phpcas9 CVEs CAS8 CVEs bw-calendar-engine1 CVEs bw-webdav1 CVEs cas server1 CVEs java cas client1 CVEs

All apereo vulnerabilities

Frequently asked questions

Common questions about apereo cas_server vulnerabilities.

How many CVEs does apereo cas_server have?

apereo cas_server has 2 published CVE records since 2024.

How many apereo cas_server CVEs are in CISA KEV?

None of apereo cas_server's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.

Are there public exploits for apereo cas_server vulnerabilities?

Yes — 2 of apereo cas_server's CVEs have a known public exploit.

What are the most common weakness types in apereo cas_server CVEs?

apereo cas_server's CVEs most often map to these CWE weakness types: CWE-287 (Improper Authentication), CWE-613 (Insufficient Session Expiration).

What is the average severity of apereo cas_server CVEs?

The average CVSS base score across apereo cas_server's scored CVEs is 6.3.

References

All apereo vulnerabilities
The MITRE CVE Program (opens in a new tab)
Learn: What is a CVE?
CWE directory: the weakness types these CVEs map to

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track apereo cas_server vulnerabilities

Monitor new apereo cas_server vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing

On this page

Overview
Severity and exploitation
Affected versions and CVEs
Common weakness types
Other products
FAQ
References