Vulnerabilidades en The OpenNMS Group
16 resultadosCVE-2023-0872HIGHROLE_REST can be used to escalate to ROLE_ADMIN via /rest/usersEPSS 3.0%CVE-2023-40315MEDIUMROLE_FILESYSTEM_EDITOR Can Be Used To Escalate To ROLE_ADMINEPSS 2.5%CVE-2023-40313HIGHDisable BeanShell Interpreter Remote Server ModeEPSS 0.7%CVE-2023-40311MEDIUMStored XSS in multiple JSP files in opennms/opennmsEPSS 0.7%CVE-2023-0815MEDIUMPlaintext Password Present in the Web logsEPSS 0.6%CVE-2023-40312MEDIUMReflected XSS in multiple JSP files in opennms/opennmsEPSS 0.6%CVE-2023-0846MEDIUMUnauthenticated, stored XSS in display of alarm reduction-keyEPSS 0.5%CVE-2023-0871MEDIUMAn XML External Entity injection vulnerabilityEPSS 0.5%CVE-2023-0868MEDIUMStealing Cookies using Reflected XSS via graph resultsEPSS 0.4%CVE-2023-40314MEDIUMCross-site scripting in bootstrap.jspEPSS 0.4%CVE-2023-0867MEDIUMMultiple stored and reflected Cross-site Scripting in webappEPSS 0.4%CVE-2023-0869MEDIUMCross-site scripting in outage/list.htmEPSS 0.4%CVE-2023-40612MEDIUMAuthenticated XXE Injection Via The File EditorEPSS 0.4%CVE-2023-0870HIGHForm Can Be Manipulated with Cross-Site Request Forgery (CSRF)EPSS 0.3%CVE-2025-53121MEDIUMStored XSS in multiple 33.0.8files in opennms/opennmsEPSS 0.2%CVE-2025-53122MEDIUMSQLi in OpenNMS Horizon and MeridianEPSS 0.2%