CVE-2025-23392
Description
A Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in spacewalk-java allows execution of arbitrary Javascript code on target systems.This issue affects Container suse/manager/5.0/x86_64/server:5.0.4.7.19.1: from ? before 5.0.24-150600.3.25.1; Container suse/manager/5.0/x86_64/server:5.0.4.7.19.1: from ? before 5.0.24-150600.3.25.1; Container suse/manager/5.0/x86_64/server:5.0.4.7.19.1: from ? before 5.0.24-150600.3.25.1; Container suse/manager/5.0/x86_64/server:5.0.4.7.19.1: from ? before 5.0.24-150600.3.25.1; SUSE Manager Server Module 4.3: from ? before 4.3.85-150400.3.105.3; SUSE Manager Server Module 4.3: from ? before 4.3.85-150400.3.105.3; SUSE Manager Server Module 4.3: from ? before 4.3.85-150400.3.105.3; SUSE Manager Server Module 4.3: from ? before 4.3.85-150400.3.105.3.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
36- Range: <4.3.85-150400.3.105.3
- Range: <5.0.24-150600.3.25.1
- osv-coords34 versionspkg:rpm/suse/cobbler&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/grafana-formula&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/inter-server-sync&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/mgr-daemon&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/release-notes-susemanager&distro=SUSE%20Manager%20Server%204.3pkg:rpm/suse/release-notes-susemanager-proxy&distro=SUSE%20Manager%20Proxy%204.3pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-admin&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-client-tools&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacewalk-client-tools&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-config&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-java&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-proxy-installer&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacewalk-utils&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/subscription-matcher&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/supportutils-plugin-susemanager-client&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/supportutils-plugin-susemanager&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/supportutils-plugin-susemanager-proxy&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/susemanager-build-keys&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/susemanager-build-keys&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager-docs_en&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager-schema&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager-sls&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager-sync-data&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager-tftpsync-recv&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/uyuni-proxy-systemd-services&distro=SUSE%20Manager%20Client%20Tools%2015pkg:rpm/suse/uyuni-proxy-systemd-services&distro=SUSE%20Manager%20Client%20Tools%20for%20SLE%20Micro%205pkg:rpm/suse/uyuni-proxy-systemd-services&distro=SUSE%20Manager%20Proxy%20Module%204.3
< 3.3.3-150400.5.58.3+ 33 more
- (no CPE)range: < 3.3.3-150400.5.58.3
- (no CPE)range: < 4.3.0-150400.3.24.2
- (no CPE)range: < 0.3.7-150400.3.39.4
- (no CPE)range: < 4.3.12-150400.3.24.2
- (no CPE)range: < 4.3.16-150400.3.140.1
- (no CPE)range: < 4.3.16-150400.3.98.1
- (no CPE)range: < 4.3.31-150400.3.48.2
- (no CPE)range: < 4.3.31-150400.3.48.2
- (no CPE)range: < 4.3.14-150400.3.15.3
- (no CPE)range: < 4.3.33-150400.3.55.2
- (no CPE)range: < 4.3.33-150400.3.55.2
- (no CPE)range: < 4.3.23-150400.3.39.3
- (no CPE)range: < 4.3.23-150400.3.39.3
- (no CPE)range: < 4.3.16-150400.3.24.2
- (no CPE)range: < 4.3.87-150400.3.110.2
- (no CPE)range: < 4.3.12-150400.3.9.2
- (no CPE)range: < 4.3.24-150400.3.35.4
- (no CPE)range: < 4.3.45-150400.3.60.3
- (no CPE)range: < 4.3.45-150400.3.60.3
- (no CPE)range: < 0.40-150400.3.28.2
- (no CPE)range: < 4.3.5-150400.3.9.2
- (no CPE)range: < 4.3.15-150400.3.33.2
- (no CPE)range: < 4.3.5-150400.3.9.2
- (no CPE)range: < 15.4.11-150400.3.35.2
- (no CPE)range: < 15.4.11-150400.3.35.2
- (no CPE)range: < 4.3.42-150400.3.66.1
- (no CPE)range: < 4.3.16-150400.9.72.2
- (no CPE)range: < 4.3.29-150400.3.51.2
- (no CPE)range: < 4.3.47-150400.3.61.4
- (no CPE)range: < 4.3.24-150400.3.44.2
- (no CPE)range: < 4.3.10-150400.3.12.2
- (no CPE)range: < 4.3.16-150000.1.33.1
- (no CPE)range: < 4.3.16-150000.1.33.1
- (no CPE)range: < 4.3.16-150000.1.33.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.