Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
1708.2%CRITICAL

Related CVEs

7
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2025-56537A stored cross-site scripting (XSS) vulnerability in opennebula v6.10.0.1 and fixed in v.7.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the virtual network template parameter.MEDIUM6.18.2%Apr 29, 2026
CVE-2025-56536A stored cross-site scripting (XSS) vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the user information parameter.MEDIUM6.18.2%Apr 29, 2026
CVE-2025-56535A cross-site scripting (XSS) vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the zone attribute parameter.MEDIUM6.18.2%Apr 29, 2026
CVE-2025-56534A cross-site scripting (XSS) vulnerability in the custom authenticator driver of opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.MEDIUM6.18.2%Apr 29, 2026
CVE-2022-37426Unrestricted Upload of File with Dangerous Type vulnerability in OpenNebula OpenNebula core on Linux allows File Content Injection.HIGH7.5Oct 28, 2022
CVE-2022-37425Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in OpenNebula OpenNebula core on Linux allows Remote Code Inclusion.CRITICAL9.8Oct 28, 2022
CVE-2022-37424Files or Directories Accessible to External Parties vulnerability in OpenNebula on Linux allows File Discovery.MEDIUM6.5Oct 28, 2022