Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-45885

Cross Site Scripting (XSS) vulnerability in NASA Open MCT (aka openmct) through 3.1.0 allows attackers to run arbitrary code via the new component feature in the flexibleLayout plugin.

Published

2023-11-09T17:15:08.903

Last Modified

2024-11-21T08:27:33.587

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.4 (MEDIUM)

Weaknesses
  • Type: Primary
    CWE-79
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application nasa openmct ≤ 3.1.0 Yes
References