Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

Red Hat Ceph Storage 7.1

Source -

CNA

CNA CVEs -

1

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

0
Related CVEsRelated VendorsRelated AssignersReports
1Vulnerabilities found
CVE-2024-11831
Assigner-Red Hat, Inc.
ShareView Details
Assigner-Red Hat, Inc.
CVSS Score-5.4||MEDIUM
EPSS-1.67% / 81.79%
||
7 Day CHG~0.00%
Published-10 Feb, 2025 | 15:27
Updated-17 Feb, 2026 | 07:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Npm-serialize-javascript: cross-site scripting (xss) in serialize-javascript

A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object types, allowing an attacker to inject malicious code. This code could be executed when deserialized by a web browser, causing Cross-site scripting (XSS) attacks. This issue is critical in environments where serialized data is sent to web clients, potentially compromising the security of the website or web application using this package.

Action-Not Available
Vendor-Red Hat, Inc.
Product-Red Hat Single Sign-On 7Red Hat 3scale API Management Platform 2Red Hat OpenShift Pipelines 1.17Red Hat OpenShift Pipelines 1.19RHODF-4.16-RHEL-9OpenShift ServerlessRed Hat Enterprise Linux 10Red Hat Integration Camel K 1Red Hat JBoss Enterprise Application Platform 8Red Hat OpenShift Container Platform 3.11Red Hat Quay 3Red Hat build of Apicurio Registry 2Red Hat OpenShift Pipelines 1.14.6Red Hat OpenShift Pipelines 1.18.0RHODF-4.14-RHEL-9Red Hat Ceph Storage 8.1OpenShift PipelinesRed Hat Advanced Cluster Security 4.5OpenShift Service Mesh 2Red Hat JBoss Enterprise Application Platform 7Logging Subsystem for Red Hat OpenShiftRed Hat Discovery 1Red Hat Ceph Storage 9.0Red Hat Ceph Storage 8Red Hat OpenShift Dev SpacesRed Hat OpenShift Pipelines 1.15Red Hat Fuse 7RHODF-4.15-RHEL-9Red Hat Enterprise Linux 9Red Hat Process Automation 7Red Hat Satellite 6Red Hat Ceph Storage 9Red Hat OpenShift Pipelines 1.16Red Hat Ceph Storage 7.1Red Hat Data Grid 8Red Hat OpenShift Container Platform 4RHODF-4.18-RHEL-9Red Hat Developer HubRHODF-4.17-RHEL-9Red Hat build of Apache Camel - HawtIO 4Red Hat JBoss Enterprise Application Platform Expansion Pack.NET 6.0 on Red Hat Enterprise LinuxMigration Toolkit for VirtualizationRed Hat Trusted Profile AnalyzerRed Hat Enterprise Linux 8OpenShift LightspeedCryostat 3Red Hat OpenShift AI (RHOAI)Red Hat OpenShift distributed tracing 3Red Hat Advanced Cluster Management for Kubernetes 2Red Hat build of OptaPlanner 8Red Hat Ansible Automation Platform 2Red Hat Ceph Storage 7Red Hat Advanced Cluster Security 4Red Hat Advanced Cluster Security 4.4
CWE ID-CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')