Lucene search
K

213 matches found

RedhatCVE
RedhatCVE
added 2025/09/11 12:16 a.m.15 views

CVE-2025-57540

A stored cross-site scripting XSS vulnerability exists in the WebAuthn Relying Party field within the Datacenter configuration of Proxmox Virtual Environment PVE 8.4. Authenticated users can inject JavaScript code that is later executed in the browsers of users who view the configuration page,...

5.4CVSS5.8AI score0.00267EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/09/11 12:16 a.m.17 views

CVE-2025-57539

A stored cross-site scripting XSS vulnerability in the U2F Origin field of the Datacenter configuration in Proxmox Virtual Environment PVE 8.4 allows authenticated users to store malicious input. The payload is rendered unsafely in the Web UI and executed when viewed by other users, potentially...

5.4CVSS5.7AI score0.00267EPSS
Exploits1References1
OSV
OSV
added 2025/09/09 5:16 p.m.4 views

CVE-2025-57540

A stored cross-site scripting XSS vulnerability exists in the WebAuthn Relying Party field within the Datacenter configuration of Proxmox Virtual Environment PVE 8.4. Authenticated users can inject JavaScript code that is later executed in the browsers of users who view the configuration page,...

5.4CVSS5.7AI score0.00267EPSS
Exploits1References3
NVD
NVD
added 2025/09/09 5:16 p.m.5 views

CVE-2025-57539

A stored cross-site scripting XSS vulnerability in the U2F Origin field of the Datacenter configuration in Proxmox Virtual Environment PVE 8.4 allows authenticated users to store malicious input. The payload is rendered unsafely in the Web UI and executed when viewed by other users, potentially...

5.4CVSS0.00267EPSS
Exploits1References3
OSV
OSV
added 2025/09/09 5:16 p.m.3 views

CVE-2025-57538

A stored cross-site scripting XSS vulnerability in the HTTP Proxy field within the Datacenter configuration panel of Proxmox Virtual Environment PVE 8.4 allows an authenticated user to inject malicious input. The input is stored and executed in the context of other users' browsers when they view...

5.4CVSS5.7AI score
Exploits0References3
NVD
NVD
added 2025/09/09 5:16 p.m.9 views

CVE-2025-57538

A stored cross-site scripting XSS vulnerability in the HTTP Proxy field within the Datacenter configuration panel of Proxmox Virtual Environment PVE 8.4 allows an authenticated user to inject malicious input. The input is stored and executed in the context of other users' browsers when they view...

5.4CVSS0.00308EPSS
Exploits1References3
NVD
NVD
added 2025/09/09 5:16 p.m.30 views

CVE-2025-57540

A stored cross-site scripting XSS vulnerability exists in the WebAuthn Relying Party field within the Datacenter configuration of Proxmox Virtual Environment PVE 8.4. Authenticated users can inject JavaScript code that is later executed in the browsers of users who view the configuration page,...

5.4CVSS0.00267EPSS
Exploits1References3
Microsoft Security Update
Microsoft Security Update
added 2025/09/09 5:0 p.m.17 views

2025-09 Cumulative security Hotpatch for Azure Stack HCI, version 21H2 and Windows Server 2022 Datacenter: Azure Edition for x64-based Systems (KB5065306)

Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information...

7AI score
Exploits0
CVE
CVE
added 2025/09/09 12:0 a.m.28 views

CVE-2025-57539

Vulnerability summary (CVE-2025-57539) : Proxmox Virtual Environment 8.4 is affected by a stored XSS in the U2F Origin field of the Datacenter configuration. Authenticated users can store input that is rendered unsafely in the Web UI and executed when viewed by others, potentially enabling sessio...

5.4CVSS5.1AI score0.00267EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/09 12:0 a.m.3 views

CVE-2025-57538

A stored cross-site scripting XSS vulnerability in the HTTP Proxy field within the Datacenter configuration panel of Proxmox Virtual Environment PVE 8.4 allows an authenticated user to inject malicious input. The input is stored and executed in the context of other users' browsers when they view...

5.2AI score0.00308EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/09/09 12:0 a.m.12 views

CVE-2025-57540

A stored cross-site scripting XSS vulnerability exists in the WebAuthn Relying Party field within the Datacenter configuration of Proxmox Virtual Environment PVE 8.4. Authenticated users can inject JavaScript code that is later executed in the browsers of users who view the configuration page,...

0.00267EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/09/09 12:0 a.m.9 views

CVE-2025-57539

A stored cross-site scripting XSS vulnerability in the U2F Origin field of the Datacenter configuration in Proxmox Virtual Environment PVE 8.4 allows authenticated users to store malicious input. The payload is rendered unsafely in the Web UI and executed when viewed by other users, potentially...

0.00267EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/09/09 12:0 a.m.5 views

CVE-2025-57540

A stored cross-site scripting XSS vulnerability exists in the WebAuthn Relying Party field within the Datacenter configuration of Proxmox Virtual Environment PVE 8.4. Authenticated users can inject JavaScript code that is later executed in the browsers of users who view the configuration page,...

5.4AI score0.00267EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/09/09 12:0 a.m.6 views

PT-2025-36794

Name of the Vulnerable Software and Affected Versions: Proxmox Virtual Environment version 8.4 Description: A stored cross-site scripting XSS issue exists in the WebAuthn Relying Party field within the Datacenter configuration. Authenticated users can inject JavaScript code that is later executed...

5.4CVSS5.5AI score0.00267EPSS
Exploits1References6
CVE
CVE
added 2025/09/09 12:0 a.m.16 views

CVE-2025-57540

CVE-2025-57540 describes a stored cross-site scripting (XSS) vulnerability in Proxmox Virtual Environment (PVE) 8.4, specifically in the WebAuthn Relying Party field of the Datacenter configuration. The issue allows authenticated users to inject JavaScript that runs in the browsers of others who ...

5.4CVSS5.3AI score0.00267EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/09/09 12:0 a.m.19 views

CVE-2025-57538

The CVE-2025-57538 entry describes a stored XSS flaw in Proxmox Virtual Environment (PVE) 8.4, lodged in the HTTP Proxy field of the Datacenter configuration panel. An authenticated user can inject input that is stored and later executes in other users’ browsers when viewing the affected page, en...

5.4CVSS5.3AI score0.00308EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/09 12:0 a.m.4 views

CVE-2025-57539

A stored cross-site scripting XSS vulnerability in the U2F Origin field of the Datacenter configuration in Proxmox Virtual Environment PVE 8.4 allows authenticated users to store malicious input. The payload is rendered unsafely in the Web UI and executed when viewed by other users, potentially...

5AI score0.00267EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/09/09 12:0 a.m.9 views

CVE-2025-57538

A stored cross-site scripting XSS vulnerability in the HTTP Proxy field within the Datacenter configuration panel of Proxmox Virtual Environment PVE 8.4 allows an authenticated user to inject malicious input. The input is stored and executed in the context of other users' browsers when they view...

0.00308EPSS
Exploits1References3
Microsoft Security Update
Microsoft Security Update
added 2025/08/12 5:0 p.m.49 views

2025-08 Cumulative security Hotpatch for Azure Stack HCI, version 21H2 and Windows Server 2022 Datacenter: Azure Edition for x64-based Systems (KB5063812)

Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information...

7.2AI score
Exploits0
Amd
Amd
added 2025/08/12 12:0 a.m.19 views

AMD Graphics Vulnerabilities – August 2025

Summary Audits performed on AMD graphics and datacenter accelerator products, as well as external reports received by AMD, uncovered potential vulnerabilities affecting AMD graphics, datacenter, and some client processors...

8.8CVSS7.4AI score0.00169EPSS
Exploits1
Rows per page
Query Builder