Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

RHODF-4.14-RHEL-9

Source -

CNA

CNA CVEs -

1

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

0
Related CVEsRelated VendorsRelated AssignersReports
1Vulnerabilities found
CVE-2024-11831
Assigner-Red Hat, Inc.
ShareView Details
Assigner-Red Hat, Inc.
CVSS Score-5.4||MEDIUM
EPSS-1.01% / 58.52%
||
7 Day CHG~0.00%
Published-10 Feb, 2025 | 15:27
Updated-25 Jun, 2026 | 05:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Npm-serialize-javascript: cross-site scripting (xss) in serialize-javascript

A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object types, allowing an attacker to inject malicious code. This code could be executed when deserialized by a web browser, causing Cross-site scripting (XSS) attacks. This issue is critical in environments where serialized data is sent to web clients, potentially compromising the security of the website or web application using this package.

Action-Not Available
Vendor-Red Hat, Inc.
Product-Red Hat Advanced Cluster Security 4.4Migration Toolkit for VirtualizationRed Hat OpenShift AI (RHOAI)Red Hat In-Vehicle Operating System 1Red Hat Advanced Cluster Security 4.5Red Hat Enterprise Linux 10Red Hat OpenShift Pipelines 1.18.0Red Hat OpenShift Container Platform 3.11Red Hat Discovery 1Red Hat Ansible Automation Platform 2Red Hat Trusted Profile AnalyzerRed Hat OpenShift Container Platform 4Red Hat Advanced Cluster Security 4Red Hat Ceph Storage 8Red Hat Single Sign-On 7RHODF-4.17-RHEL-9Red Hat OpenShift Pipelines 1.14.6Red Hat OpenShift Pipelines 1.17Logging Subsystem for Red Hat OpenShiftRed Hat Ceph Storage 9.0RHODF-4.15-RHEL-9OpenShift PipelinesRed Hat Advanced Cluster Management for Kubernetes 2Red Hat Ceph Storage 9Red Hat OpenShift distributed tracing 3Red Hat Ceph Storage 7RHODF-4.18-RHEL-9Red Hat Ceph Storage 8.1OpenShift Service Mesh 2Red Hat Process Automation 7RHODF-4.16-RHEL-9Red Hat JBoss Enterprise Application Platform Expansion PackRed Hat OpenShift Pipelines 1.15Red Hat 3scale API Management Platform 2Red Hat build of Apache Camel - HawtIO 4Red Hat build of Apicurio Registry 2RHODF-4.14-RHEL-9OpenShift LightspeedRed Hat Data Grid 8Red Hat JBoss Enterprise Application Platform 7Red Hat Enterprise Linux 9Red Hat Integration Camel K 1Red Hat Fuse 7Red Hat OpenShift Pipelines 1.19Red Hat build of OptaPlanner 8Red Hat Quay 3Red Hat Developer Hub.NET 6.0 on Red Hat Enterprise LinuxRed Hat Ceph Storage 7.1Red Hat OpenShift Dev SpacesRed Hat Enterprise Linux 8Red Hat Satellite 6Red Hat JBoss Enterprise Application Platform 8Cryostat 3Red Hat OpenShift Pipelines 1.16OpenShift Serverless
CWE ID-CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')