opennebula CVE 脆弱性と CVE 一覧（7）

製品（CPE）: — CVE 件数: 7

opennebula 脆弱性概要

opennebula 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。

過去の問題は主に vendor risk cross-site scripting and パス処理の欠陥などに関し、一部は vendor impact session compromise を招き、vendor surface software deployment and vendor surface production workloads 関連の場面に影響します。

掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。

脆弱性分布の推移（直近24か月）

CVE	概要	ソース	CVSS 最大値	EPSS（%）	公開	更新
CVE-2025-56537	A stored cross-site scripting (XSS) vulnerability in opennebula v6.10.0.1 and fixed in v.7.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the virtual network template parameter.	[email protected]	6.1	0.18%	2026-04-29	2026-04-30
CVE-2025-56536	A stored cross-site scripting (XSS) vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the user information parameter.	[email protected]	6.1	0.18%	2026-04-29	2026-04-30
CVE-2025-56535	A cross-site scripting (XSS) vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the zone attribute parameter.	[email protected]	6.1	0.18%	2026-04-29	2026-04-30
CVE-2025-56534	A cross-site scripting (XSS) vulnerability in the custom authenticator driver of opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.	[email protected]	6.1	0.18%	2026-04-29	2026-04-30
CVE-2022-37426	Unrestricted Upload of File with Dangerous Type vulnerability in OpenNebula OpenNebula core on Linux allows File Content Injection.	[email protected]	4.3	0.50%	2022-10-28	2024-11-21
CVE-2022-37425	Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in OpenNebula OpenNebula core on Linux allows Remote Code Inclusion.	[email protected]	9.9	1.54%	2022-10-28	2024-11-21
CVE-2022-37424	Files or Directories Accessible to External Parties vulnerability in OpenNebula on Linux allows File Discovery.	[email protected]	6.5	0.71%	2022-10-28	2024-11-21

cvelogic Threat Intelligence