gsd-2023-0846
Vulnerability from gsd
Modified
2023-12-13 01:20
Details
Unauthenticated, stored cross-site scripting in the display of alarm reduction keys in multiple versions of OpenNMS Horizon and Meridian could allow an attacker access to confidential session information. Users should upgrade to Meridian 2023.1.0 or newer, or Horizon 31.0.4. Meridian and Horizon installation instructions state that they are intended for installation within an organization's private networks and should not be directly accessible from the Internet.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2023-0846",
"id": "GSD-2023-0846"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2023-0846"
],
"details": "Unauthenticated, stored cross-site scripting in the display of alarm reduction keys in multiple versions of OpenNMS Horizon and Meridian could allow an attacker access to confidential session information. Users should upgrade to Meridian 2023.1.0 or newer, or Horizon 31.0.4. Meridian and Horizon installation instructions state that they are intended for installation within an organization\u0027s private networks and should not be directly accessible from the Internet.",
"id": "GSD-2023-0846",
"modified": "2023-12-13T01:20:22.835110Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@opennms.com",
"ID": "CVE-2023-0846",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Horizon",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "26.1.0",
"version_value": "31.0.4"
}
]
}
}
]
},
"vendor_name": "The OpenNMS Group "
},
{
"product": {
"product_data": [
{
"product_name": "Meridian",
"version": {
"version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"defaultStatus": "unaffected",
"versions": [
{
"lessThan": "2020.1.32",
"status": "affected",
"version": "2020.1.0",
"versionType": "git"
},
{
"lessThan": "2021.1.24",
"status": "affected",
"version": "2021.1.0",
"versionType": "git"
},
{
"lessThan": "2022.1.13",
"status": "affected",
"version": "2022.1.0",
"versionType": "git"
},
{
"status": "unaffected",
"version": "2023.1.0"
}
]
}
}
]
}
}
]
},
"vendor_name": "The OpenNMS Group"
}
]
}
},
"credits": [
{
"lang": "en",
"value": "Stefan Schiller (SonarSource)"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Unauthenticated, stored cross-site scripting in the display of alarm reduction keys in multiple versions of OpenNMS Horizon and Meridian could allow an attacker access to confidential session information. Users should upgrade to Meridian 2023.1.0 or newer, or Horizon 31.0.4. Meridian and Horizon installation instructions state that they are intended for installation within an organization\u0027s private networks and should not be directly accessible from the Internet."
}
]
},
"generator": {
"engine": "Vulnogram 0.1.0-dev"
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-79",
"lang": "eng",
"value": "CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/OpenNMS/opennms/pull/5506/files",
"refsource": "MISC",
"url": "https://github.com/OpenNMS/opennms/pull/5506/files"
},
{
"name": "https://docs.opennms.com/meridian/2022/releasenotes/changelog.html#releasenotes-changelog-Meridian-2022.1.13",
"refsource": "MISC",
"url": "https://docs.opennms.com/meridian/2022/releasenotes/changelog.html#releasenotes-changelog-Meridian-2022.1.13"
}
]
},
"solution": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://github.com/OpenNMS/opennms/pull/5506/files\"\u003e\u003cbr\u003e\u003c/a\u003e\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eUpgrade to a newer version of Meridian or Horizon. Or change the details.jsp file as follows:\u0026nbsp;\u003c/span\u003e\u003cbr\u003e\u003cbr\u003e\u003cbr\u003eChange:\u0026nbsp;\u003cbr\u003e\u0026lt;th class=\"col-md-1\"\u0026gt;Reduction\u0026amp;nbsp;Key\u0026lt;/th\u0026gt;\u003cbr\u003e\u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026lt;td class=\"col-md-11\" colspan=\"3\"\u0026gt;\u003cbr\u003e\u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026lt;% if (alarm.getReductionKey() != null) {%\u0026gt;\u003cbr\u003e\u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026lt;%=alarm.getReductionKey()%\u0026gt;\u003cbr\u003e\u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026lt;% } else {%\u0026gt;\u003cbr\u003e\u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026amp;nbsp;\u003cbr\u003e\u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026lt;% }%\u0026gt;\u003cbr\u003e\u003cbr\u003eTo:\u003cbr\u003e\u0026lt;th class=\"col-md-1\"\u0026gt;Reduction\u0026amp;nbsp;Key\u0026lt;/th\u0026gt;\u003cbr\u003e\u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026lt;td class=\"col-md-11\" colspan=\"3\"\u0026gt;\u003cbr\u003e\u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026lt;% if (alarm.getReductionKey() != null) {%\u0026gt;\u003cbr\u003e\u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026lt;%=WebSecurityUtils.sanitizeString(alarm.getReductionKey())%\u0026gt;\u003cbr\u003e\u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026lt;% } else {%\u0026gt;\u003cbr\u003e\u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026amp;nbsp;\u003cbr\u003e\u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026nbsp; \u0026lt;% }%\u0026gt;\u003cbr\u003e\u003cbr\u003e\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://github.com/OpenNMS/opennms/pull/5506/files\"\u003ehttps://github.com/OpenNMS/opennms/pull/5506/files\u003cbr\u003e\u003c/a\u003e\u003cbr\u003e"
}
],
"value": " \n https://github.com/OpenNMS/opennms/pull/5506/files Upgrade to a newer version of Meridian or Horizon. Or change the details.jsp file as follows:\u00a0\n\n\nChange:\u00a0\n\u003cth class=\"col-md-1\"\u003eReduction\u0026nbsp;Key\u003c/th\u003e\n\u00a0 \u00a0 \u00a0 \u00a0 \u003ctd class=\"col-md-11\" colspan=\"3\"\u003e\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u003c% if (alarm.getReductionKey() != null) {%\u003e\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u003c%=alarm.getReductionKey()%\u003e\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u003c% } else {%\u003e\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u0026nbsp;\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u003c% }%\u003e\n\nTo:\n\u003cth class=\"col-md-1\"\u003eReduction\u0026nbsp;Key\u003c/th\u003e\n\u00a0 \u00a0 \u00a0 \u00a0 \u003ctd class=\"col-md-11\" colspan=\"3\"\u003e\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u003c% if (alarm.getReductionKey() != null) {%\u003e\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u003c%=WebSecurityUtils.sanitizeString(alarm.getReductionKey())%\u003e\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u003c% } else {%\u003e\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u0026nbsp;\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u003c% }%\u003e\n\n https://github.com/OpenNMS/opennms/pull/5506/files\n https://github.com/OpenNMS/opennms/pull/5506/files \n"
}
],
"source": {
"discovery": "EXTERNAL"
}
},
"gitlab.com": {
"advisories": [
{
"affected_range": "(,31.0.3)",
"affected_versions": "All versions before 31.0.3",
"cwe_ids": [
"CWE-1035",
"CWE-937"
],
"date": "2023-02-22",
"description": "Unauthenticated, stored cross-site scripting in the display of alarm reduction keys in multiple versions of OpenNMS Horizon and Meridian could allow an attacker access to confidential session information.",
"fixed_versions": [
"31.0.3"
],
"identifier": "CVE-2023-0846",
"identifiers": [
"GHSA-79jr-8fhm-8wv3",
"CVE-2023-0846"
],
"not_impacted": "All versions starting from 31.0.3",
"package_slug": "maven/org.opennms/opennms",
"pubdate": "2023-02-22",
"solution": "Upgrade to version 31.0.3 or above.",
"title": "OpenNMS Horizon and Meridian vulnerable to Cross-site Scripting",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2023-0846",
"https://github.com/OpenNMS/opennms/pull/5506/files",
"https://issues.opennms.org/browse/NMS-14877",
"https://github.com/advisories/GHSA-79jr-8fhm-8wv3"
],
"uuid": "23419966-0d26-42d1-9ff9-89122f0ed5a4"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:opennms:horizon:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "31.0.4",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:opennms:meridian:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2023.1.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security@opennms.com",
"ID": "CVE-2023-0846"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Unauthenticated, stored cross-site scripting in the display of alarm reduction keys in multiple versions of OpenNMS Horizon and Meridian could allow an attacker access to confidential session information. Users should upgrade to Meridian 2023.1.0 or newer, or Horizon 31.0.4. Meridian and Horizon installation instructions state that they are intended for installation within an organization\u0027s private networks and should not be directly accessible from the Internet."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/OpenNMS/opennms/pull/5506/files",
"refsource": "MISC",
"tags": [
"Patch"
],
"url": "https://github.com/OpenNMS/opennms/pull/5506/files"
},
{
"name": "https://docs.opennms.com/meridian/2022/releasenotes/changelog.html#releasenotes-changelog-Meridian-2022.1.13",
"refsource": "MISC",
"tags": [
"Release Notes"
],
"url": "https://docs.opennms.com/meridian/2022/releasenotes/changelog.html#releasenotes-changelog-Meridian-2022.1.13"
}
]
}
},
"impact": {
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
},
"lastModifiedDate": "2023-03-03T15:17Z",
"publishedDate": "2023-02-22T19:15Z"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…