Skip to main content

Glance CVE-2018-3748

MEDIUM
Cross-site Scripting (XSS) (CWE-79)
2018-07-03 support@hackerone.com
6.1
CVSS 3.0 · NVD
Share

Severity by source

NVD PRIMARY
6.1 MEDIUM
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
None

Lifecycle Timeline

1
CVE Published
Jul 03, 2018 - 21:29 nvd
MEDIUM 6.1

DescriptionNVD

There is a Stored XSS vulnerability in the glance node module versions <= 3.0.5. File name, which contains malicious HTML (eg. embedded iframe element or javascript: pseudo-protocol handler in <a> element) allows to execute JavaScript code against any user who opens a directory listing containing such crafted file name.

AnalysisAI

There is a Stored XSS vulnerability in the glance node module versions <= 3.0.5. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Technical ContextAI

This vulnerability is classified as Cross-Site Scripting (XSS) (CWE-79), which allows attackers to inject malicious scripts into web pages viewed by other users. There is a Stored XSS vulnerability in the glance node module versions <= 3.0.5. File name, which contains malicious HTML (eg. embedded iframe element or javascript: pseudo-protocol handler in <a> element) allows to execute JavaScript code against any user who opens a directory listing containing such crafted file name. Affected products include: Glance Project Glance.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Sanitize all user input, use Content-Security-Policy headers, encode output contextually (HTML, JS, URL). Use frameworks with built-in XSS protection.

More in Glance

View all
CVE-2022-31546 CRITICAL POC
9.3 Jul 11

The nlpweb/glance repository through 2014-06-27 on GitHub allows absolute path traversal because the Flask send_file fun

CVE-2015-5162 HIGH POC
7.5 Oct 07

The image parser in OpenStack Cinder 7.0.2 and 8.0.0 through 8.1.1; Glance before 11.0.1 and 12.0.0; and Nova before 12.

CVE-2018-3715 MEDIUM POC
6.5 Jun 07

glance node module before 3.0.4 suffers from a Path Traversal vulnerability due to lack of validation of path passed to

CVE-2022-24696 HIGH
7.8 Mar 13

Mirametrix Glance before 5.1.1.42207 (released on 2018-08-30) allows a local attacker to elevate privileges. Rated high

CVE-2013-4428 LOW POC
3.5 Oct 27

OpenStack Image Registry and Delivery Service (Glance) Folsom, Grizzly before 2013.1.4, and Havana before 2013.2, when t

CVE-2024-32498 MEDIUM
6.5 Jul 05

An issue was discovered in OpenStack Cinder through 24.0.0, Glance before 28.0.2, and Nova before 29.0.3. Rated medium s

CVE-2017-7200 MEDIUM
5.8 Mar 21

An SSRF issue was discovered in OpenStack Glance before Newton. Rated medium severity (CVSS 5.8), this vulnerability is

CVE-2015-8234 MEDIUM
5.5 Mar 29

The image signature algorithm in OpenStack Glance 11.0.0 allows remote attackers to bypass the signature verification pr

CVE-2026-34881 MEDIUM
5.0 Mar 31

Server-Side Request Forgery in OpenStack Glance image import allows authenticated users to bypass URL validation via HTT

CVE-2015-3289 MEDIUM
4.0 Aug 14

OpenStack Glance before 2015.1.1 (kilo) allows remote authenticated users to cause a denial of service (disk consumption

CVE-2013-1840 LOW
3.5 Mar 22

The v1 API in OpenStack Glance Essex (2012.1), Folsom (2012.2), and Grizzly, when using the single-tenant Swift or S3 st

CVE-2015-5163 LOW
3.5 Aug 19

The import task action in OpenStack Image Service (Glance) 2015.1.x before 2015.1.2 (kilo), when using the V2 API, allow

Share

CVE-2018-3748 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy