CVE-2017-2661

Опубликовано: 12 мар. 2018

Источник: ubuntu

Приоритет: medium

CVSS2: 4.3

CVSS3: 6.1

Описание

ClusterLabs pcs before version 0.9.157 is vulnerable to a cross-site scripting vulnerability due to improper validation of Node name field when creating new cluster or adding existing cluster.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	0.9.164-1
cosmic	not-affected	0.9.164-1
devel	not-affected	0.9.164-1
disco	not-affected	0.9.164-1
eoan	not-affected	0.9.164-1
esm-apps/bionic	not-affected	0.9.164-1
esm-apps/focal	not-affected	0.9.164-1
esm-apps/jammy	not-affected	0.9.164-1
esm-apps/xenial	released	0.9.149-1ubuntu1.1+esm1

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

6.1 Medium

CVSS3

Связанные уязвимости

CVE-2017-2661

CVSS3: 6.1

redhat

почти 9 лет назад

ClusterLabs pcs before version 0.9.157 is vulnerable to a cross-site scripting vulnerability due to improper validation of Node name field when creating new cluster or adding existing cluster.

CVE-2017-2661

CVSS3: 6.1

nvd

почти 8 лет назад

ClusterLabs pcs before version 0.9.157 is vulnerable to a cross-site scripting vulnerability due to improper validation of Node name field when creating new cluster or adding existing cluster.

CVE-2017-2661

CVSS3: 6.1

debian

почти 8 лет назад

ClusterLabs pcs before version 0.9.157 is vulnerable to a cross-site s ...

GHSA-qc8r-mjjf-5j6v

CVSS3: 6.1

github

больше 3 лет назад

ClusterLabs pcs before version 0.9.157 is vulnerable to a cross-site scripting vulnerability due to improper validation of Node name field when creating new cluster or adding existing cluster.

4.3 Medium

CVSS2

6.1 Medium

CVSS3

CVE-2017-2661

Описание

Пакет pcs

Ссылки на источники

Связанные уязвимости