pkg:maven/org.opennms/opennms
Type
maven
Namespace
org.opennms
Name
opennms
Known advisories, vulnerabilities and fixes for org.opennms/opennms package.
High
2
Moderate
7
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | >= 1.0.0, < 27.1.1 |
CVE-2021-25931
|
 MAVEN:GHSA-2RQ5-68HM-H4J8
|
Cross-Site Request Forgery in OpenNMS Horizon | high |
2021-05-25T18:46:55
(3 years ago) |
|
| Fixed | = 27.1.1 |
CVE-2021-25931
|
MAVEN:GHSA-2RQ5-68HM-H4J8
|
Cross-Site Request Forgery in OpenNMS Horizon | high |
2021-05-25T18:46:55
(3 years ago) |
|
| Affected | < 31.0.3 |
CVE-2023-0846
|
MAVEN:GHSA-79JR-8FHM-8WV3
|
OpenNMS Horizon and Meridian vulnerable to Cross-site Scripting | moderate |
2023-02-22T21:30:39
(19 months ago) |
|
| Fixed | = 31.0.3 |
CVE-2023-0846
|
MAVEN:GHSA-79JR-8FHM-8WV3
|
OpenNMS Horizon and Meridian vulnerable to Cross-site Scripting | moderate |
2023-02-22T21:30:39
(19 months ago) |
|
| Affected | >= 18.0.0-1, <= 27.1.0-1 |
CVE-2021-25934
|
MAVEN:GHSA-9HHC-CC6C-99HH
|
OpenNMS Horizon vulnerable to XSS | moderate |
2022-05-24T19:03:10
(2 years ago) |
|
| Affected | < 31.0.4 |
CVE-2023-0815
|
MAVEN:GHSA-9XPJ-MVP2-3943
|
OpenNMS has potential Insertion of Sensitive Information into Log File vulnerability | moderate |
2023-02-23T15:33:05
(19 months ago) |
|
| Fixed | = 31.0.4 |
CVE-2023-0815
|
MAVEN:GHSA-9XPJ-MVP2-3943
|
OpenNMS has potential Insertion of Sensitive Information into Log File vulnerability | moderate |
2023-02-23T15:33:05
(19 months ago) |
|
| Affected | >= 16.0.0, <= 27.0.3 |
CVE-2021-3396
|
MAVEN:GHSA-C3MP-9VX3-2RVV
|
OpenNMS Horizon RCE via JEXL2 expression | high |
2022-05-24T17:42:35
(2 years ago) |
|
| Fixed | = 27.0.4 |
CVE-2021-3396
|
MAVEN:GHSA-C3MP-9VX3-2RVV
|
OpenNMS Horizon RCE via JEXL2 expression | high |
2022-05-24T17:42:35
(2 years ago) |
|
| Affected | >= 1.0.0, < 27.1.1 |
CVE-2021-25933
|
MAVEN:GHSA-JJHW-5MXP-2G2Q
|
Cross-site Scripting in OpenNMS Horizon | moderate |
2021-05-25T18:47:01
(3 years ago) |
|
| Fixed | = 27.1.1 |
CVE-2021-25933
|
MAVEN:GHSA-JJHW-5MXP-2G2Q
|
Cross-site Scripting in OpenNMS Horizon | moderate |
2021-05-25T18:47:01
(3 years ago) |
|
| Affected | >= 1.0.0, < 27.1.1 |
CVE-2021-25929
|
MAVEN:GHSA-JMV4-73V2-PVGC
|
Cross-site Scripting in OpenNMS Horizon | moderate |
2021-05-25T18:46:58
(3 years ago) |
|
| Fixed | = 27.1.1 |
CVE-2021-25929
|
MAVEN:GHSA-JMV4-73V2-PVGC
|
Cross-site Scripting in OpenNMS Horizon | moderate |
2021-05-25T18:46:58
(3 years ago) |
|
| Affected | < 31.0.4 |
CVE-2023-0867
|
MAVEN:GHSA-MJV2-6JV4-VRG7
|
OpenNMS Meridian and Horizon vulnerable to Cross-site Scripting | moderate |
2023-02-23T15:33:05
(19 months ago) |
|
| Fixed | = 31.0.4 |
CVE-2023-0867
|
MAVEN:GHSA-MJV2-6JV4-VRG7
|
OpenNMS Meridian and Horizon vulnerable to Cross-site Scripting | moderate |
2023-02-23T15:33:05
(19 months ago) |
|
| Affected | >= 1.0.0, < 27.1.1 |
CVE-2021-25930
|
MAVEN:GHSA-P63H-7HW8-5CW4
|
Cross-Site Request Forgery in OpenNMS Horizon | moderate |
2021-05-25T18:46:49
(3 years ago) |
|
| Fixed | = 27.1.1 |
CVE-2021-25930
|
MAVEN:GHSA-P63H-7HW8-5CW4
|
Cross-Site Request Forgery in OpenNMS Horizon | moderate |
2021-05-25T18:46:49
(3 years ago) |