Lucene search
GoogleOSV:GHSA-7V39-JJJ6-J4J4HistoryFeb 23, 2023 - 3:33 p.m.
Cross Site Scripting in OpenNMS
2023-02-2315:33:05
Google
osv.dev
8
cross-site scripting
opennms
attacker access
session information
software
confidential information
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
34.2%
Cross-site scripting in outage/list.htm in multiple versions of OpenNMS Meridian and Horizon allows an attacker access to confidential session information.
Related
cvelist
cvelist
CVE-2023-0869 Cross-site scripting in outage/list.htm
2023-02-23 14:43:40
cve
cve
CVE-2023-0869
2023-02-23 15:15:11
nvd
nvd
CVE-2023-0869
2023-02-23 15:15:11
prion
prion
Cross site scripting
2023-02-23 15:15:00
osv
osv
CVE-2023-0869
2023-02-23 15:15:11
github
github
Cross Site Scripting in OpenNMS
2023-02-23 15:33:05
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
34.2%
Related for OSV:GHSA-7V39-JJJ6-J4J4