Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7754 matches found

RedHat Linux
RedHat Linuxadded 2016/06/21 10:23 p.m.2 views

python-django-horizon: XSS in client side template

A DOM-based, cross-site scripting vulnerability has been identified in the OpenStack dashboard, where user input was not filtered correctly. An authenticated dashboard user could exploit the flaw by injecting an AngularJS template into a dashboard form for example, using an image's description,...

5.4CVSS5.6AI score0.00553EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2016/06/21 10:23 p.m.29 views

Important: Red Hat Security Advisory: python-django-horizon security update

An update for python-django-horizon is now available for Red Hat OpenStack Platform 8.0 Liberty. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

5.4CVSS6.3AI score0.00553EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2016/06/21 10:23 p.m.30 views

Important: Red Hat Security Advisory: python-django-horizon security and bug fix update

An update for python-django-horizon is now available for Red Hat Enterprise Linux OpenStack Platform 6.0 Juno for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

5.4CVSS6.3AI score0.00553EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2016/06/21 10:23 p.m.3 views

python-django-horizon: XSS in client side template

A DOM-based, cross-site scripting vulnerability has been identified in the OpenStack dashboard, where user input was not filtered correctly. An authenticated dashboard user could exploit the flaw by injecting an AngularJS template into a dashboard form for example, using an image's description,...

5.4CVSS5.6AI score0.00553EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2016/06/20 12:0 a.m.29 views

Debian DLA-520-1 : horizon security update

It was discovered that there was an XSS vulnerability in horizon, a Django module providing web interaction with OpenStack. For Debian 7 'Wheezy', this issue has been fixed in horizon version 2012.1.1-10+deb7u1. We recommend that you upgrade your horizon packages. NOTE: Tenable Network Security h...

5.4CVSS6.3AI score0.00553EPSS
Exploits0References3
CNVD
CNVDadded 2016/06/20 12:0 a.m.1 views

Horizon Cross-Site Scripting Vulnerability

OpenStack is a cloud platform management project developed by the National Aeronautics and Space Administration in collaboration with Rackspace in the U.S. Horizon is one of the dashboard projects that provides users and administrators with a web-based user interface for managing OpenStack...

5.4CVSS6.1AI score0.00553EPSS
Exploits0References1
Debian
Debianadded 2016/06/18 8:12 p.m.18 views

[SECURITY] [DLA 520-1] horizon security update

Package : horizon Version : 2012.1.1-10+deb7u1 CVE ID : CVE-2016-4428 It was discovered that there was an XSS vulnerability in horizon, a Django module providing web interaction with OpenStack. For Debian 7 "Wheezy", this issue has been fixed in horizon version 2012.1.1-10+deb7u1. We recommend th...

5.4CVSS5.2AI score0.00553EPSS
Exploits0
Fedora
Fedoraadded 2016/06/18 7:40 p.m.29 views

[SECURITY] Fedora 24 Update: docker-1.10.3-15.gitf476348.fc24

Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that will run virtually anywhere. Docker containers can encapsulate any payload, and will run consistently on and between virtually any server. The same container...

7.8CVSS2AI score0.00069EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2016/06/17 10:48 p.m.23 views

CVE-2016-4428

A DOM-based, cross-site scripting vulnerability was found in the OpenStack dashboard, where user input was not filtered correctly. An authenticated dashboard user could exploit the flaw by injecting an AngularJS template into a dashboard form for example, using an image's description, triggering...

5.4CVSS1AI score0.00553EPSS
Exploits0References1
OSV
OSVadded 2016/06/17 3:59 p.m.2 views

DEBIAN-CVE-2016-5363

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended MAC-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via 1 a crafted DHCP discovery message or 2 crafted non-IP traffi...

8.2CVSS6.9AI score0.04749EPSS
Exploits0References1
OSV
OSVadded 2016/06/17 3:59 p.m.5 views

CVE-2016-5363

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended MAC-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via 1 a crafted DHCP discovery message or 2 crafted non-IP traffi...

8.2CVSS6.3AI score
Exploits0References9
NVD
NVDadded 2016/06/17 3:59 p.m.20 views

CVE-2016-5363

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended MAC-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via 1 a crafted DHCP discovery message or 2 crafted non-IP traffi...

8.2CVSS8AI score0.04749EPSS
Exploits0References9
NVD
NVDadded 2016/06/17 3:59 p.m.16 views

CVE-2016-5362

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a crafted DHCP discovery message...

8.2CVSS7.9AI score0.0631EPSS
Exploits0References9
OSV
OSVadded 2016/06/17 3:59 p.m.6 views

CVE-2016-5362

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a crafted DHCP discovery message...

8.2CVSS6.5AI score
Exploits0References9
OSV
OSVadded 2016/06/17 3:59 p.m.2 views

DEBIAN-CVE-2016-5362

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a crafted DHCP discovery message...

8.2CVSS6.9AI score0.0631EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2016/06/17 3:59 p.m.21 views

CVE-2015-8914

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended ICMPv6-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a link-local source address...

9.1CVSS7AI score0.06657EPSS
Exploits1References1
NVD
NVDadded 2016/06/17 3:59 p.m.21 views

CVE-2015-8914

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended ICMPv6-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a link-local source address...

9.1CVSS9AI score0.06657EPSS
Exploits1References9
Prion
Prionadded 2016/06/17 3:59 p.m.16 views

Design/Logic Flaw

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended ICMPv6-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a link-local source address...

6.4CVSS7.2AI score0.06657EPSS
Exploits1References9Affected Software1
OSV
OSVadded 2016/06/17 3:59 p.m.0 views

UBUNTU-CVE-2015-8914

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended ICMPv6-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a link-local source address...

9.1CVSS7AI score0.06657EPSS
Exploits1References2
UbuntuCve
UbuntuCveadded 2016/06/17 3:59 p.m.18 views

CVE-2016-5363

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended MAC-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via 1 a crafted DHCP discovery message or 2 crafted non-IP traffi...

8.2CVSS6.9AI score0.04749EPSS
Exploits0References1
Rows per page
Query Builder