Lucene search
K

98 matches found

BDU FSTEC
BDU FSTEC
added 2026/06/17 12:0 a.m.2 views

The vulnerability of the OpenNebula cloud management platform for virtual machines, related to the lack of measures taken to sanitize input data, allows a perpetrator to trigger a service failure.

The vulnerability of the OpenNebula cloud management platform for virtual machines is related to the lack of measures taken to sanitize input data. Exploiting this vulnerability could allow a malicious actor to trigger service failures...

10CVSS5.8AI score0.01536EPSS
Exploits0References5Affected Software2
RedhatCVE
RedhatCVE
added 2026/06/05 7:51 p.m.14 views

CVE-2025-56537

A stored cross-site scripting XSS vulnerability in opennebula v6.10.0.1 and fixed in v.7.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the virtual network template parameter...

6.1CVSS5.6AI score0.00185EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:51 p.m.14 views

CVE-2025-56535

A cross-site scripting XSS vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the zone attribute parameter...

6.1CVSS5.6AI score0.00185EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:51 p.m.13 views

CVE-2025-56534

A cross-site scripting XSS vulnerability in the custom authenticator driver of opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6.1CVSS5.6AI score0.00185EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:51 p.m.16 views

CVE-2025-56536

A stored cross-site scripting XSS vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the user information parameter...

6.1CVSS5.6AI score0.00185EPSS
Exploits3References1
NVD
NVD
added 2026/04/29 4:16 p.m.6 views

CVE-2025-56535

A cross-site scripting XSS vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the zone attribute parameter...

6.1CVSS0.00185EPSS
Exploits2References2
NVD
NVD
added 2026/04/29 4:16 p.m.5 views

CVE-2025-56534

A cross-site scripting XSS vulnerability in the custom authenticator driver of opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6.1CVSS0.00185EPSS
Exploits2References2
NVD
NVD
added 2026/04/29 4:16 p.m.4 views

CVE-2025-56536

A stored cross-site scripting XSS vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the user information parameter...

6.1CVSS0.00185EPSS
Exploits3References2
NVD
NVD
added 2026/04/29 4:16 p.m.8 views

CVE-2025-56537

A stored cross-site scripting XSS vulnerability in opennebula v6.10.0.1 and fixed in v.7.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the virtual network template parameter...

6.1CVSS0.00185EPSS
Exploits3References2
ATTACKERKB
ATTACKERKB
added 2026/04/29 12:0 a.m.3 views

CVE-2025-56535

A cross-site scripting XSS vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the zone attribute parameter...

6.1CVSS5.3AI score0.00185EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2026/04/29 12:0 a.m.7 views

PT-2026-35942

A cross-site scripting XSS vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the zone attribute parameter...

6.1CVSS5.3AI score0.00185EPSS
Exploits2References3
ATTACKERKB
ATTACKERKB
added 2026/04/29 12:0 a.m.3 views

CVE-2025-56534

A cross-site scripting XSS vulnerability in the custom authenticator driver of opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6.1CVSS5.2AI score0.00185EPSS
Exploits2References3
EUVD
EUVD
added 2026/04/29 12:0 a.m.6 views

EUVD-2025-209587

A cross-site scripting XSS vulnerability in the custom authenticator driver of opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6.1CVSS5.2AI score0.00185EPSS
Exploits2References2
CVE
CVE
added 2026/04/29 12:0 a.m.11 views

CVE-2025-56537

CVE-2025-56537 affects OpenNebula OpenNebula v6.10.0.1; the stored XSS occurs via a crafted payload injected into the virtual network template parameter. The issue is fixed in OpenNebula 7.0. An attacker can trigger the stored XSS through the vulnerable web UI (Sunstone) under network template in...

6.1CVSS5.3AI score0.00185EPSS
Exploits3References2Affected Software1
CVE
CVE
added 2026/04/29 12:0 a.m.11 views

CVE-2025-56536

CVE-2025-56536 is a stored XSS in OpenNebula v6.10.0.1 where an attacker can inject payload via the user information parameter. The vulnerability affects OpenNebula 6.10.0.1 and is tracked with a CVSSv3.1 base score of 6.1 (Medium), attack vector Network, required user interaction, and changed sc...

6.1CVSS5.3AI score0.00185EPSS
Exploits3References2Affected Software1
Cvelist
Cvelist
added 2026/04/29 12:0 a.m.33 views

CVE-2025-56537

A stored cross-site scripting XSS vulnerability in opennebula v6.10.0.1 and fixed in v.7.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the virtual network template parameter...

0.00185EPSS
Exploits3References2
Vulnrichment
Vulnrichment
added 2026/04/29 12:0 a.m.5 views

CVE-2025-56535

A cross-site scripting XSS vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the zone attribute parameter...

5.3AI score0.00185EPSS
Exploits2References2
EUVD
EUVD
added 2026/04/29 12:0 a.m.9 views

EUVD-2025-209591

A stored cross-site scripting XSS vulnerability in opennebula v6.10.0.1 and fixed in v.7.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the virtual network template parameter...

6.1CVSS5.3AI score0.00185EPSS
Exploits3References2
EUVD
EUVD
added 2026/04/29 12:0 a.m.7 views

EUVD-2025-209588

A cross-site scripting XSS vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the zone attribute parameter...

6.1CVSS5.3AI score0.00185EPSS
Exploits2References2
Cvelist
Cvelist
added 2026/04/29 12:0 a.m.29 views

CVE-2025-56535

A cross-site scripting XSS vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the zone attribute parameter...

0.00185EPSS
Exploits2References2
Rows per page
Query Builder