Vulnerabilities > Opennms > Horizon > 31.0.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-16 | CVE-2023-40314 | Cross-site Scripting vulnerability in Opennms Horizon Cross-site scripting in bootstrap.jsp in multiple versions of OpenNMS Meridian and Horizon allows an attacker access to confidential session information. | 6.1 |
| 2023-08-17 | CVE-2023-40313 | Unspecified vulnerability in Opennms Horizon A BeanShell interpreter in remote server mode runs in OpenMNS Horizon versions earlier than 32.0.2 and in related Meridian versions which could allow arbitrary remote Java code execution. low complexity opennms | 8.8 |
| 2023-03-22 | CVE-2023-0870 | Cross-Site Request Forgery (CSRF) vulnerability in Opennms Horizon A form can be manipulated with cross-site request forgery in multiple versions of OpenNMS Meridian and Horizon. | 6.7 |