Lucene search
Ubuntu.comUB:CVE-2014-3594HistoryAug 19, 2014 - 12:00 a.m.
CVE-2014-3594
2014-08-1900:00:00
ubuntu.com
ubuntu.com
10
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
48.3%
Cross-site scripting (XSS) vulnerability in the Host Aggregates interface
in OpenStack Dashboard (Horizon) before 2013.2.4, 2014.1 before 2014.1.2,
and Juno before Juno-3 allows remote administrators to inject arbitrary web
script or HTML via a new host aggregate name.
Bugs
Notes
| Author | Note |
|---|---|
| jdstrand | Horizon on Essex (Ubuntu 12.04) does not have the Host Aggregate interface |
Related
redhat
redhat
(RHSA-2014:1336) Moderate: python-django-horizon security and bug fix update
2014-09-30 00:00:00
(RHSA-2014:1335) Moderate: python-django-horizon security and bug fix update
2014-09-30 00:00:00
(RHSA-2014:1188) Moderate: python-django-horizon security update
2014-09-15 00:00:00
debiancve
debiancve
CVE-2014-3594
2014-08-22 14:55:07
github
github
cve
cve
CVE-2014-3594
2014-08-22 14:55:07
altlinux
altlinux
veracode
veracode
Cross-site Scripting (XSS)
2019-01-15 09:02:17
Cross-site Scripting (XSS)
2019-05-02 05:03:56
Cross-site Scripting (XSS)
2019-05-02 05:03:56
prion
prion
Cross site scripting
2014-08-22 14:55:00
nessus
nessus
Oracle Solaris Third-Party Patch Update : horizon (cve_2014_3594_cross_site)
2015-01-19 00:00:00
Ubuntu 14.04 LTS : OpenStack Horizon vulnerabilities (USN-2323-1)
2014-08-22 00:00:00
openSUSE Security Update : openstack-dashboard (openSUSE-SU-2015:0078-1)
2015-01-20 00:00:00
cvelist
cvelist
CVE-2014-3594
2014-08-22 14:00:00
nvd
nvd
CVE-2014-3594
2014-08-22 14:55:07
openvas
openvas
Ubuntu: Security Advisory (USN-2323-1)
2014-08-22 00:00:00
ubuntu
ubuntu
OpenStack Horizon vulnerabilities
2014-08-21 00:00:00
securityvulns
securityvulns
[USN-2323-1] OpenStack Horizon vulnerabilities
2014-08-24 00:00:00
OpenStack multiple security vulnerabilities
2014-08-24 00:00:00
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
48.3%
Related for UB:CVE-2014-3594