rpm package
suse/openstack-dashboard&distro=SUSE OpenStack Cloud 5
pkg:rpm/suse/openstack-dashboard&distro=SUSE%20OpenStack%20Cloud%205
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-3219 | — | < 2014.2.4~a0~dev12-13.2 | 2014.2.4~a0~dev12-13.2 | Aug 20, 2015 | Cross-site scripting (XSS) vulnerability in the Orchestration/Stack section in OpenStack Dashboard (Horizon) 2014.2 before 2014.2.4 and 2015.1.x before 2015.1.1 allows remote attackers to inject arbitrary web script or HTML via the description parameter in a heat template, which | ||
| CVE-2015-3988 | — | < 2014.2.4~a0~dev12-13.2 | 2014.2.4~a0~dev12-13.2 | May 19, 2015 | Multiple cross-site scripting (XSS) vulnerabilities in OpenStack Dashboard (Horizon) 2015.1.0 allow remote authenticated users to inject arbitrary web script or HTML via the metadata to a (1) Glance image, (2) Nova flavor or (3) Host Aggregate. |
- CVE-2015-3219Aug 20, 2015affected < 2014.2.4~a0~dev12-13.2fixed 2014.2.4~a0~dev12-13.2
Cross-site scripting (XSS) vulnerability in the Orchestration/Stack section in OpenStack Dashboard (Horizon) 2014.2 before 2014.2.4 and 2015.1.x before 2015.1.1 allows remote attackers to inject arbitrary web script or HTML via the description parameter in a heat template, which
- CVE-2015-3988May 19, 2015affected < 2014.2.4~a0~dev12-13.2fixed 2014.2.4~a0~dev12-13.2
Multiple cross-site scripting (XSS) vulnerabilities in OpenStack Dashboard (Horizon) 2015.1.0 allow remote authenticated users to inject arbitrary web script or HTML via the metadata to a (1) Glance image, (2) Nova flavor or (3) Host Aggregate.