Netbox Project - Netbox CVE

Filtered by vendor Netbox Project Subscribe

Filtered by product Netbox

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-37625	1 Netbox Project	1 Netbox	2023-08-15	N/A	5.4 MEDIUM
A stored cross-site scripting (XSS) vulnerability in Netbox v3.4.7 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Custom Link templates.
CVE-2019-25011	1 Netbox Project	1 Netbox	2021-01-06	3.5 LOW	5.4 MEDIUM
NetBox through 2.6.2 allows an Authenticated User to conduct an XSS attack against an admin via a GFM-rendered field, as demonstrated by /dcim/sites/add/ comments.

Vulnerabilities (CVE)