Lucene search
UbuntuUSN-2062-1HistoryDec 20, 2013 - 12:00 a.m.
OpenStack Horizon vulnerability
2013-12-2000:00:00
ubuntu.com
31
Releases
- Ubuntu 13.10
- Ubuntu 13.04
- Ubuntu 12.10
Packages
- horizon - Web interface for OpenStack cloud infrastructure
Details
Chris Chapman discovered cross-site scripting (XSS) vulnerabilities
in Horizon via the Volumes and Network Topology pages. An authenticated
attacker could exploit these to conduct stored cross-site scripting (XSS)
attacks against users viewing these pages in order to modify the contents
or steal confidential data within the same domain.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 13.10 | noarch | python-django-horizon | < 1:2013.2-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | openstack-dashboard | < 1:2013.2-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | openstack-dashboard-ubuntu-theme | < 1:2013.2-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | python-django-openstack | < 1:2013.2-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.04 | noarch | python-django-horizon | < 1:2013.1.4-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.04 | noarch | openstack-dashboard | < 1:2013.1.4-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.04 | noarch | openstack-dashboard-ubuntu-theme | < 1:2013.1.4-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.04 | noarch | python-django-openstack | < 1:2013.1.4-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | python-django-horizon | < 2012.2.4-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | openstack-dashboard | < 2012.2.4-0ubuntu1.1 | UNKNOWN |
References
Related
securityvulns
securityvulns
[USN-2062-1] OpenStack Horizon vulnerability
2013-12-23 00:00:00
OpenStack multiple security vulnerabilities
2013-12-23 00:00:00
cve
cve
CVE-2013-6858
2013-11-23 17:55:00
CVE-2013-6406
2013-12-08 06:07:00
openvas
openvas
Ubuntu Update for horizon USN-2062-1
2013-12-23 00:00:00
Ubuntu: Security Advisory (USN-2062-1)
2013-12-23 00:00:00
prion
prion
Cross site scripting
2013-11-23 17:55:00
Design/Logic Flaw
2013-12-08 06:07:00
redhat
redhat
(RHSA-2014:0365) Moderate: python-django-horizon security and bug fix update
2014-04-03 00:00:00
debiancve
debiancve
CVE-2013-6858
2013-11-23 17:55:00
cvelist
cvelist
CVE-2013-6858
2013-11-23 17:00:00
nessus
nessus
Ubuntu 12.10 / 13.04 / 13.10 : horizon vulnerability (USN-2062-1)
2013-12-20 00:00:00
openSUSE Security Update : openstack-dashboard (openSUSE-SU-2015:0078-1)
2015-01-20 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2019-01-15 08:59:44
ubuntucve
ubuntucve
CVE-2013-6858
2013-11-23 00:00:00