Vulnerability Details CVE-2017-13762
ONOS versions 1.8.0, 1.9.0, and 1.10.0 are vulnerable to XSS.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 72.1%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
- https://gerrit.onosproject.org/#/c/14031/
- https://gerrit.onosproject.org/#/c/14049/
- https://gerrit.onosproject.org/#/c/14050/
- https://gerrit.onosproject.org/#/c/14066/
- https://gerrit.onosproject.org/#/c/14067/
- https://gerrit.onosproject.org/#/c/14069/
- https://gerrit.onosproject.org/#/c/14148/
- https://gerrit.onosproject.org/#/c/14170/
- https://gerrit.onosproject.org/#/c/14179/
- https://gerrit.onosproject.org/#/c/14182/
- https://gerrit.onosproject.org/#/c/14031/
- https://gerrit.onosproject.org/#/c/14049/
- https://gerrit.onosproject.org/#/c/14050/
- https://gerrit.onosproject.org/#/c/14066/
- https://gerrit.onosproject.org/#/c/14067/
- https://gerrit.onosproject.org/#/c/14069/
- https://gerrit.onosproject.org/#/c/14148/
- https://gerrit.onosproject.org/#/c/14170/
- https://gerrit.onosproject.org/#/c/14179/
- https://gerrit.onosproject.org/#/c/14182/
Products affected by CVE-2017-13762
-
cpe:2.3:a:onosproject:onos:1.10.0
-
cpe:2.3:a:onosproject:onos:1.8.0
-
cpe:2.3:a:onosproject:onos:1.9.0