CVE-2017-7400

Опубликовано: 03 апр. 2017

Источник: debian

Описание

OpenStack Horizon 9.x through 9.1.1, 10.x through 10.0.2, and 11.0.0 allows remote authenticated administrators to conduct XSS attacks via a crafted federation mapping.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
horizon	fixed	3:10.0.1-1		package
horizon	not-affected		jessie	package
horizon	not-affected		wheezy	package

Примечания

https://launchpad.net/bugs/1667086

Связанные уязвимости

CVE-2017-7400

CVSS3: 4.8

ubuntu

почти 9 лет назад

OpenStack Horizon 9.x through 9.1.1, 10.x through 10.0.2, and 11.0.0 allows remote authenticated administrators to conduct XSS attacks via a crafted federation mapping.

CVE-2017-7400

CVSS3: 3.5

redhat

почти 9 лет назад

OpenStack Horizon 9.x through 9.1.1, 10.x through 10.0.2, and 11.0.0 allows remote authenticated administrators to conduct XSS attacks via a crafted federation mapping.

CVE-2017-7400

CVSS3: 4.8

nvd

почти 9 лет назад

OpenStack Horizon 9.x through 9.1.1, 10.x through 10.0.2, and 11.0.0 allows remote authenticated administrators to conduct XSS attacks via a crafted federation mapping.

GHSA-47vp-44v9-rhgq

CVSS3: 4.8

github

больше 3 лет назад

OpenStack Horizon Cross-site Scripting (XSS)