cnvd - cnvd-2016-04220

cnvd-2016-04220

Vulnerability from cnvd

Title: Horizon跨站脚本漏洞

Description:

OpenStack是美国国家航空航天局（National Aeronautics and Space Administration）和美国Rackspace公司合作研发的一个云平台管理项目。Horizon是其中的一个仪表盘项目，它为用户和管理员提供了一个基于Web的用于管理OpenStack服务的用户界面。

Horizon 8.0.1及之前版本和9.0.0版本至9.0.1版本中存在跨站脚本漏洞。攻击者可利用该漏洞注入任意Web脚本或HTML。

Severity: 中

Patch Name: Horizon跨站脚本漏洞的补丁

Patch Description:

Horizon 8.0.1及之前版本和9.0.0版本至9.0.1版本中存在跨站脚本漏洞。攻击者可利用该漏洞注入任意Web脚本或HTML。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已经发布了升级补丁以修复此安全问题，详情请关注厂商主页： http://docs.openstack.org/developer/horizon/intro.html

Reference: http://www.openwall.com/lists/oss-security/2016/06/17/4

Impacted products

Name
['OpenStack Horizon <=8.0.1', 'OpenStack Horizon >=9.0.0，<=9.0.1']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-4428"
    }
  },
  "description": "OpenStack\u662f\u7f8e\u56fd\u56fd\u5bb6\u822a\u7a7a\u822a\u5929\u5c40\uff08National Aeronautics and Space Administration\uff09\u548c\u7f8e\u56fdRackspace\u516c\u53f8\u5408\u4f5c\u7814\u53d1\u7684\u4e00\u4e2a\u4e91\u5e73\u53f0\u7ba1\u7406\u9879\u76ee\u3002Horizon\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u4eea\u8868\u76d8\u9879\u76ee\uff0c\u5b83\u4e3a\u7528\u6237\u548c\u7ba1\u7406\u5458\u63d0\u4f9b\u4e86\u4e00\u4e2a\u57fa\u4e8eWeb\u7684\u7528\u4e8e\u7ba1\u7406OpenStack\u670d\u52a1\u7684\u7528\u6237\u754c\u9762\u3002\r\n\r\nHorizon 8.0.1\u53ca\u4e4b\u524d\u7248\u672c\u548c9.0.0\u7248\u672c\u81f39.0.1\u7248\u672c\u4e2d\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6ce8\u5165\u4efb\u610fWeb\u811a\u672c\u6216HTML\u3002",
  "discovererName": "Beth Lancaster from Virginia Tech\uff0cBrandon Sawyers from Virginia Tech",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttp://docs.openstack.org/developer/horizon/intro.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-04220",
  "openTime": "2016-06-23",
  "patchDescription": "OpenStack\u662f\u7f8e\u56fd\u56fd\u5bb6\u822a\u7a7a\u822a\u5929\u5c40\uff08National Aeronautics and Space Administration\uff09\u548c\u7f8e\u56fdRackspace\u516c\u53f8\u5408\u4f5c\u7814\u53d1\u7684\u4e00\u4e2a\u4e91\u5e73\u53f0\u7ba1\u7406\u9879\u76ee\u3002Horizon\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u4eea\u8868\u76d8\u9879\u76ee\uff0c\u5b83\u4e3a\u7528\u6237\u548c\u7ba1\u7406\u5458\u63d0\u4f9b\u4e86\u4e00\u4e2a\u57fa\u4e8eWeb\u7684\u7528\u4e8e\u7ba1\u7406OpenStack\u670d\u52a1\u7684\u7528\u6237\u754c\u9762\u3002\r\n\r\nHorizon 8.0.1\u53ca\u4e4b\u524d\u7248\u672c\u548c9.0.0\u7248\u672c\u81f39.0.1\u7248\u672c\u4e2d\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6ce8\u5165\u4efb\u610fWeb\u811a\u672c\u6216HTML\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Horizon\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "OpenStack Horizon \u003c=8.0.1",
      "OpenStack Horizon \u003e=9.0.0\uff0c\u003c=9.0.1"
    ]
  },
  "referenceLink": "http://www.openwall.com/lists/oss-security/2016/06/17/4",
  "serverity": "\u4e2d",
  "submitTime": "2016-06-20",
  "title": "Horizon\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e"
}

CVE-2016-4428 (GCVE-0-2016-4428)

Vulnerability from cvelistv5

Published

2016-07-12 19:00

Modified

2024-08-06 00:32

Severity ?

CWE

Summary

Cross-site scripting (XSS) vulnerability in OpenStack Dashboard (Horizon) 8.0.1 and earlier and 9.0.0 through 9.0.1 allows remote authenticated users to inject arbitrary web script or HTML by injecting an AngularJS template in a dashboard form.

References

▼	URL	Tags
	https://access.redhat.com/errata/RHSA-2016:1268	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2016:1270	vendor-advisory, x_refsource_REDHAT
	http://www.debian.org/security/2016/dsa-3617	vendor-advisory, x_refsource_DEBIAN
	https://access.redhat.com/errata/RHSA-2016:1272	vendor-advisory, x_refsource_REDHAT
	https://security.openstack.org/ossa/OSSA-2016-010.html	x_refsource_CONFIRM
	https://review.openstack.org/329997	x_refsource_CONFIRM
	https://bugs.launchpad.net/horizon/+bug/1567673	x_refsource_CONFIRM
	https://access.redhat.com/errata/RHSA-2016:1269	vendor-advisory, x_refsource_REDHAT
	http://www.openwall.com/lists/oss-security/2016/06/17/4	mailing-list, x_refsource_MLIST
	https://access.redhat.com/errata/RHSA-2016:1271	vendor-advisory, x_refsource_REDHAT
	https://review.openstack.org/329998	x_refsource_CONFIRM
	https://review.openstack.org/329996	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T00:32:24.621Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2016:1268",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2016:1268"
          },
          {
            "name": "RHSA-2016:1270",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2016:1270"
          },
          {
            "name": "DSA-3617",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2016/dsa-3617"
          },
          {
            "name": "RHSA-2016:1272",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2016:1272"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.openstack.org/ossa/OSSA-2016-010.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://review.openstack.org/329997"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugs.launchpad.net/horizon/+bug/1567673"
          },
          {
            "name": "RHSA-2016:1269",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2016:1269"
          },
          {
            "name": "[oss-security] 20160617 [OSSA-2016-010] XSS in Horizon client side template (CVE-2016-4428)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2016/06/17/4"
          },
          {
            "name": "RHSA-2016:1271",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2016:1271"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://review.openstack.org/329998"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://review.openstack.org/329996"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2016-06-17T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Cross-site scripting (XSS) vulnerability in OpenStack Dashboard (Horizon) 8.0.1 and earlier and 9.0.0 through 9.0.1 allows remote authenticated users to inject arbitrary web script or HTML by injecting an AngularJS template in a dashboard form."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-11-25T20:57:01",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "RHSA-2016:1268",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2016:1268"
        },
        {
          "name": "RHSA-2016:1270",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2016:1270"
        },
        {
          "name": "DSA-3617",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2016/dsa-3617"
        },
        {
          "name": "RHSA-2016:1272",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2016:1272"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.openstack.org/ossa/OSSA-2016-010.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://review.openstack.org/329997"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugs.launchpad.net/horizon/+bug/1567673"
        },
        {
          "name": "RHSA-2016:1269",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2016:1269"
        },
        {
          "name": "[oss-security] 20160617 [OSSA-2016-010] XSS in Horizon client side template (CVE-2016-4428)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2016/06/17/4"
        },
        {
          "name": "RHSA-2016:1271",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2016:1271"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://review.openstack.org/329998"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://review.openstack.org/329996"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2016-4428",
    "datePublished": "2016-07-12T19:00:00",
    "dateReserved": "2016-05-02T00:00:00",
    "dateUpdated": "2024-08-06T00:32:24.621Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted