What is the severity of CVE-2014-3960?

CVE-2014-3960 has been classified as a medium severity vulnerability due to its potential to allow cross-site scripting attacks.

How do I fix CVE-2014-3960?

To mitigate CVE-2014-3960, upgrade to OpenNMS version 1.12.7 or later, which addresses the vulnerabilities.

What types of vulnerabilities are associated with CVE-2014-3960?

CVE-2014-3960 consists of multiple cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject arbitrary web scripts or HTML.

Which versions of OpenNMS are affected by CVE-2014-3960?

CVE-2014-3960 affects OpenNMS versions prior to 1.12.7 and specific earlier versions including 1.9.0 to 1.12.5.

What can happen if CVE-2014-3960 is exploited?

If exploited, CVE-2014-3960 can allow attackers to execute malicious scripts in the context of a user's session, leading to potential data theft or session hijacking.

Vulnerability/
CVE-2014-3960

medium

4.3

CWE

4/6/2014

17/9/2024

CVE-2014-3960: XSS

First published: Wed Jun 04 2014(Updated: )

Multiple cross-site scripting (XSS) vulnerabilities in OpenNMS before 1.12.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Opennms Opennms	<=1.12.6
Opennms Opennms	=1.9.0
Opennms Opennms	=1.9.1
Opennms Opennms	=1.9.2
Opennms Opennms	=1.9.3
Opennms Opennms	=1.9.4
Opennms Opennms	=1.9.5
Opennms Opennms	=1.9.6
Opennms Opennms	=1.9.7
Opennms Opennms	=1.9.8
Opennms Opennms	=1.9.90
Opennms Opennms	=1.9.91
Opennms Opennms	=1.9.92
Opennms Opennms	=1.9.93
Opennms Opennms	=1.10.0
Opennms Opennms	=1.10.1
Opennms Opennms	=1.10.2
Opennms Opennms	=1.10.3
Opennms Opennms	=1.10.4
Opennms Opennms	=1.10.5
Opennms Opennms	=1.10.6
Opennms Opennms	=1.10.7
Opennms Opennms	=1.10.8
Opennms Opennms	=1.10.9
Opennms Opennms	=1.10.10
Opennms Opennms	=1.10.11
Opennms Opennms	=1.10.12
Opennms Opennms	=1.10.13
Opennms Opennms	=1.10.14
Opennms Opennms	=1.11.0
Opennms Opennms	=1.11.1
Opennms Opennms	=1.11.2
Opennms Opennms	=1.11.3
Opennms Opennms	=1.11.90
Opennms Opennms	=1.11.91
Opennms Opennms	=1.11.92
Opennms Opennms	=1.11.93
Opennms Opennms	=1.11.94
Opennms Opennms	=1.12.0
Opennms Opennms	=1.12.1
Opennms Opennms	=1.12.2
Opennms Opennms	=1.12.3
Opennms Opennms	=1.12.4
Opennms Opennms	=1.12.5

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-3960?
CVE-2014-3960 has been classified as a medium severity vulnerability due to its potential to allow cross-site scripting attacks.
How do I fix CVE-2014-3960?
To mitigate CVE-2014-3960, upgrade to OpenNMS version 1.12.7 or later, which addresses the vulnerabilities.
What types of vulnerabilities are associated with CVE-2014-3960?
CVE-2014-3960 consists of multiple cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject arbitrary web scripts or HTML.
Which versions of OpenNMS are affected by CVE-2014-3960?
CVE-2014-3960 affects OpenNMS versions prior to 1.12.7 and specific earlier versions including 1.9.0 to 1.12.5.
What can happen if CVE-2014-3960 is exploited?
If exploited, CVE-2014-3960 can allow attackers to execute malicious scripts in the context of a user's session, leading to potential data theft or session hijacking.

collector/nvd-index
agent/type
agent/softwarecombine
agent/author
agent/weakness
agent/references
agent/severity
agent/tags
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
vendor/opennms
canonical/opennms opennms
version/opennms opennms/1.12.6
version/opennms opennms/1.9.0
version/opennms opennms/1.9.1
version/opennms opennms/1.9.2
version/opennms opennms/1.9.3
version/opennms opennms/1.9.4
version/opennms opennms/1.9.5
version/opennms opennms/1.9.6
version/opennms opennms/1.9.7
version/opennms opennms/1.9.8
version/opennms opennms/1.9.90
version/opennms opennms/1.9.91
version/opennms opennms/1.9.92
version/opennms opennms/1.9.93
version/opennms opennms/1.10.0
version/opennms opennms/1.10.1
version/opennms opennms/1.10.2
version/opennms opennms/1.10.3
version/opennms opennms/1.10.4
version/opennms opennms/1.10.5
version/opennms opennms/1.10.6
version/opennms opennms/1.10.7
version/opennms opennms/1.10.8
version/opennms opennms/1.10.9
version/opennms opennms/1.10.10
version/opennms opennms/1.10.11
version/opennms opennms/1.10.12
version/opennms opennms/1.10.13
version/opennms opennms/1.10.14
version/opennms opennms/1.11.0
version/opennms opennms/1.11.1
version/opennms opennms/1.11.2
version/opennms opennms/1.11.3
version/opennms opennms/1.11.90
version/opennms opennms/1.11.91
version/opennms opennms/1.11.92
version/opennms opennms/1.11.93
version/opennms opennms/1.11.94
version/opennms opennms/1.12.0
version/opennms opennms/1.12.1
version/opennms opennms/1.12.2
version/opennms opennms/1.12.3
version/opennms opennms/1.12.4
version/opennms opennms/1.12.5

Frequently Asked Questions

What is the severity of CVE-2014-3960?
CVE-2014-3960 has been classified as a medium severity vulnerability due to its potential to allow cross-site scripting attacks.
How do I fix CVE-2014-3960?
To mitigate CVE-2014-3960, upgrade to OpenNMS version 1.12.7 or later, which addresses the vulnerabilities.
What types of vulnerabilities are associated with CVE-2014-3960?
CVE-2014-3960 consists of multiple cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject arbitrary web scripts or HTML.
Which versions of OpenNMS are affected by CVE-2014-3960?
CVE-2014-3960 affects OpenNMS versions prior to 1.12.7 and specific earlier versions including 1.9.0 to 1.12.5.
What can happen if CVE-2014-3960 is exploited?
If exploited, CVE-2014-3960 can allow attackers to execute malicious scripts in the context of a user's session, leading to potential data theft or session hijacking.

CVE-2014-3960: XSS

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-3960?

How do I fix CVE-2014-3960?

What types of vulnerabilities are associated with CVE-2014-3960?

Which versions of OpenNMS are affected by CVE-2014-3960?

What can happen if CVE-2014-3960 is exploited?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2014-3960?

How do I fix CVE-2014-3960?

What types of vulnerabilities are associated with CVE-2014-3960?

Which versions of OpenNMS are affected by CVE-2014-3960?

What can happen if CVE-2014-3960 is exploited?