rpm package
suse/crowbar-barclamp-nova_dashboard&distro=SUSE OpenStack Cloud 5
pkg:rpm/suse/crowbar-barclamp-nova_dashboard&distro=SUSE%20OpenStack%20Cloud%205
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-3219 | — | < 1.9+git.1443622531.b2b2939-9.3 | 1.9+git.1443622531.b2b2939-9.3 | Aug 20, 2015 | Cross-site scripting (XSS) vulnerability in the Orchestration/Stack section in OpenStack Dashboard (Horizon) 2014.2 before 2014.2.4 and 2015.1.x before 2015.1.1 allows remote attackers to inject arbitrary web script or HTML via the description parameter in a heat template, which | ||
| CVE-2015-3988 | — | < 1.9+git.1443622531.b2b2939-9.3 | 1.9+git.1443622531.b2b2939-9.3 | May 19, 2015 | Multiple cross-site scripting (XSS) vulnerabilities in OpenStack Dashboard (Horizon) 2015.1.0 allow remote authenticated users to inject arbitrary web script or HTML via the metadata to a (1) Glance image, (2) Nova flavor or (3) Host Aggregate. |
- CVE-2015-3219Aug 20, 2015affected < 1.9+git.1443622531.b2b2939-9.3fixed 1.9+git.1443622531.b2b2939-9.3
Cross-site scripting (XSS) vulnerability in the Orchestration/Stack section in OpenStack Dashboard (Horizon) 2014.2 before 2014.2.4 and 2015.1.x before 2015.1.1 allows remote attackers to inject arbitrary web script or HTML via the description parameter in a heat template, which
- CVE-2015-3988May 19, 2015affected < 1.9+git.1443622531.b2b2939-9.3fixed 1.9+git.1443622531.b2b2939-9.3
Multiple cross-site scripting (XSS) vulnerabilities in OpenStack Dashboard (Horizon) 2015.1.0 allow remote authenticated users to inject arbitrary web script or HTML via the metadata to a (1) Glance image, (2) Nova flavor or (3) Host Aggregate.