RSS   Vulnerabilities for 'Openmct'   RSS

2022-02-20
 
CVE-2022-22126

CWE-79
 

 
Openmct versions 1.3.0 to 1.7.7 are vulnerable against stored XSS via the �??Web Page�?� element, that allows the injection of malicious JavaScript into the �??URL�?? field. This issue affects: nasa openmct 1.7.7 version and prior versions; 1.3.0 version and later versions.

 
 
CVE-2022-23053

CWE-79
 

 
Openmct versions 1.3.0 to 1.7.7 are vulnerable against stored XSS via the �??Condition Widget�?� element, that allows the injection of malicious JavaScript into the �??URL�?? field. This issue affects: nasa openmct 1.7.7 version and prior versions; 1.3.0 version and later versions.

 
 
CVE-2022-23054

CWE-79
 

 
Openmct versions 1.3.0 to 1.7.7 are vulnerable against stored XSS via the �??Summary Widget�?� element, that allows the injection of malicious JavaScript into the �??URL�?? field. This issue affects: nasa openmct 1.7.7 version and prior versions; 1.3.0 version and later versions.

 

 >>> Vendor: NASA 5 Products
Kodiak
Rtretrievalframework
Singledop
Cfitsio
Openmct


Copyright 2024, cxsecurity.com

 

Back to Top