A cross-site scripting (XSS) vulnerability in Open Networking Foundation ONOS from version v1.9.0 to v2.7.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the url parameter of the API documentation dashboard.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-03-14T00:00:00
Updated: 2024-08-02T10:56:02.617Z
Reserved: 2023-01-23T00:00:00
Link: CVE-2023-24279
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-03-14T01:15:12.967
Modified: 2024-11-21T07:47:39.133
Link: CVE-2023-24279
Redhat
No data.