Lucene search
K

6 matches found

NVD
NVD
added 2026/02/25 8:23 p.m.6 views

CVE-2026-25733

Rucio is a software framework that provides functionality to organize, manage, and access large volumes of scientific data using customizable policies. Versions prior to 35.8.3, 38.5.4, and 39.3.1 have a stored Cross-Site Scripting XSS vulnerability in the Custom Rules function of the WebUI where...

7.3CVSS0.0026EPSS
Exploits1References5
NVD
NVD
added 2026/02/25 8:23 p.m.7 views

CVE-2026-25138

Rucio is a software framework that provides functionality to organize, manage, and access large volumes of scientific data using customizable policies. Prior to versions 35.8.3, 38.5.4, and 39.3.1, the WebUI login endpoint returns distinct error messages depending on whether a supplied username...

5.3CVSS0.00327EPSS
Exploits1References5
OSV
OSV
added 2026/02/25 7:33 p.m.5 views

CVE-2026-25734 Rucio WebUI has Stored Cross-site Scripting (XSS) in RSE Metadata

Rucio is a software framework that provides functionality to organize, manage, and access large volumes of scientific data using customizable policies. Versions prior to 35.8.3, 38.5.4, and 39.3.1 have a stored Cross-Site Scripting XSS vulnerability in the RSE metadata of the WebUI where...

6.1CVSS6AI score0.00287EPSS
Exploits1References7
OSV
OSV
added 2026/02/25 6:57 p.m.3 views

CVE-2026-25136 Rucio WebUI has a Reflected Cross-site Scripting Vulnerability

Rucio is a software framework that provides functionality to organize, manage, and access large volumes of scientific data using customizable policies. A reflected Cross-site Scripting vulnerability was located in versions prior to 35.8.3, 38.5.4, and 39.3.1 in the rendering of the ExceptionMessa...

8.1CVSS5.6AI score0.00263EPSS
Exploits1References7
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.8 views

Rucio 安全漏洞

Rucio is an open-source scientific data management tool developed by Rucio team. Versions of Rucio prior to 35.8.3, 38.5.4, and 39.3.1 contained security vulnerabilities. These vulnerabilities were caused by reflective cross-site scripting in the rendering of the ExceptionMessage on the WebUI 500...

8.1CVSS5.7AI score0.00263EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.8 views

PT-2026-22002

Name of the Vulnerable Software and Affected Versions Rucio versions prior to 35.8.3, 38.5.4, and 39.3.1 Description Rucio is a software framework used to organize, manage, and access large volumes of scientific data. A stored Cross-Site Scripting XSS issue exists in the Custom RSE Attribute of t...

6.1CVSS5.9AI score0.00287EPSS
Exploits1References12
Rows per page
Query Builder