View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2017-7400 severity moderate: SUSE including 66 source package names (openstack-ceilometer-7.0.4~a0~dev7-3.1, openstack-ceilometer-agent-central-7.0.4~a0~dev7-3.1, …), 67 product×package rows across 3 product lines (SUSE Cloud 5, SUSE OpenStack Cloud 6, SUSE OpenStack Cloud 7): Fixed 64, Known Not Affected 3.
OpenStack Horizon 9.x through 9.1.1, 10.x through 10.0.2, and 11.0.0 allows remote authenticated administrators to conduct XSS attacks via a crafted federation mapping.