CVE-2014-125070

CVE Database · CVE-2014-125070

CVE-2014-125070

· LOWModified

CVSS v3.1

3.5

EPSS

0.52%

Published

Jan 8, 2023

Modified

Nov 20, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability has been found in yanheven console and classified as problematic. Affected by this vulnerability is the function get_zone_hosts/AvailabilityZonesTable of the file openstack_dashboard/dashboards/admin/aggregates/tables.py. The manipulation leads to cross site scripting. The attack can be launched remotely. The patch is named ba908ae88d5925f4f6783eb234cc4ea95017472b. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217651.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Weaknesses (CWE)

CWE-79CWE-79

Affected Products (1)

console_project · console (up to 2014-08-19)vulnerable

References (6)

https://github.com/yanheven/console/commit/ba908ae88d5925f4f6783eb234cc4ea95017472b

Patch

https://vuldb.com/?ctiid.217651

Third Party Advisory

https://vuldb.com/?id.217651