Medium severity6.1NVD Advisory· Published Apr 29, 2026· Updated Apr 30, 2026
CVE-2025-56537
CVE-2025-56537
Description
A stored cross-site scripting (XSS) vulnerability in opennebula v6.10.0.1 and fixed in v.7.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the virtual network template parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:opennebula:opennebula:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:opennebula:opennebula:*:*:*:*:*:*:*:*range: <7.0.0
- (no CPE)range: <=6.10.0.1
Patches
Vulnerability mechanics
References
1- opennebula.io/opennebula-7/nvdProduct
News mentions
0No linked articles in our index yet.