Lucene search
K

6 matches found

OSV
OSV
added 2026/06/02 10:16 p.m.8 views

PYSEC-2026-203

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Versions prior to 7.260227.0 are vulnerable to XSS in the rendering of email-message observable body data. The content of the body field isn't appropriately sanitized when being rendered. Does...

6.1CVSS5.4AI score0.00149EPSS
Exploits0References1
PyPA
PyPA
added 2026/06/02 10:16 p.m.10 views

PYSEC-2026-203

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Versions prior to 7.260227.0 are vulnerable to XSS in the rendering of email-message observable body data. The content of the body field isn't appropriately sanitized when being rendered. Does...

6.1CVSS5.4AI score0.00149EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2026/06/02 10:16 p.m.12 views

CVE-2026-35212

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Versions prior to 7.260227.0 are vulnerable to XSS in the rendering of email-message observable body data. The content of the body field isn't appropriately sanitized when being rendered. Does...

6.1CVSS0.00149EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/02 9:28 p.m.9 views

CVE-2026-35212 OpenCTI has XSS in the rendering of email-message observable body data

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Versions prior to 7.260227.0 are vulnerable to XSS in the rendering of email-message observable body data. The content of the body field isn't appropriately sanitized when being rendered. Does...

5.3CVSS5.8AI score0.00149EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/02 9:28 p.m.10 views

EUVD-2026-34035

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Versions prior to 7.260227.0 are vulnerable to XSS in the rendering of email-message observable body data. The content of the body field isn't appropriately sanitized when being rendered. Does...

5.3CVSS5.8AI score0.00149EPSS
Exploits0References1
CVE
CVE
added 2026/06/02 9:28 p.m.27 views

CVE-2026-35212

OpenCTI vulnerability CVE-2026-35212: XSS in rendering of email-message observable body data due to insufficient sanitization in versions prior to 7.260227.0. The body content is rendered without proper sanitization, requiring user interaction and could be triggered by sharing STIX or ingesters, ...

6.1CVSS5.8AI score0.00149EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder