Lucene search
HistoryNov 23, 2013 - 5:55 p.m.
CVE-2013-6858
openstack
horizon
xss
web security
vulnerability
5.2 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
48.0%
Multiple cross-site scripting (XSS) vulnerabilities in OpenStack Dashboard (Horizon) 2013.2 and earlier allow local users to inject arbitrary web script or HTML via an instance name to (1) “Volumes” or (2) “Network Topology” page.
References
Social References
More
Related
securityvulns
securityvulns
[USN-2062-1] OpenStack Horizon vulnerability
2013-12-23 00:00:00
OpenStack multiple security vulnerabilities
2013-12-23 00:00:00
redhat
redhat
(RHSA-2014:0365) Moderate: python-django-horizon security and bug fix update
2014-04-03 00:00:00
debiancve
debiancve
CVE-2013-6858
2013-11-23 17:55:00
openvas
openvas
Ubuntu Update for horizon USN-2062-1
2013-12-23 00:00:00
Ubuntu: Security Advisory (USN-2062-1)
2013-12-23 00:00:00
prion
prion
Cross site scripting
2013-11-23 17:55:00
Design/Logic Flaw
2013-12-08 06:07:00
ubuntu
ubuntu
OpenStack Horizon vulnerability
2013-12-20 00:00:00
nessus
nessus
Ubuntu 12.10 / 13.04 / 13.10 : horizon vulnerability (USN-2062-1)
2013-12-20 00:00:00
openSUSE Security Update : openstack-dashboard (openSUSE-SU-2015:0078-1)
2015-01-20 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2019-01-15 08:59:44
cvelist
cvelist
CVE-2013-6858
2013-11-23 17:00:00
cve
cve
CVE-2013-6406
2013-12-08 06:07:00
ubuntucve
ubuntucve
CVE-2013-6858
2013-11-23 00:00:00
5.2 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
48.0%
Related for CVE-2013-6858