In OMERO before 5.6.1, group owners can access members' data in other groups. Rated low severity (CVSS 3.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Authentication Bypass
Omero
NVD
CVSS 3.1
3.8
EPSS
0.6%