Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

Red Hat Ceph Storage 8.1

Source -

CNA

CNA CVEs -

1

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

0
Related CVEsRelated VendorsRelated AssignersReports
1Vulnerabilities found
CVE-2024-11831
Assigner-Red Hat, Inc.
ShareView Details
Assigner-Red Hat, Inc.
CVSS Score-5.4||MEDIUM
EPSS-1.67% / 81.79%
||
7 Day CHG~0.00%
Published-10 Feb, 2025 | 15:27
Updated-03 Feb, 2026 | 22:06
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Npm-serialize-javascript: cross-site scripting (xss) in serialize-javascript

A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object types, allowing an attacker to inject malicious code. This code could be executed when deserialized by a web browser, causing Cross-site scripting (XSS) attacks. This issue is critical in environments where serialized data is sent to web clients, potentially compromising the security of the website or web application using this package.

Action-Not Available
Vendor-Red Hat, Inc.
Product-Red Hat OpenShift Pipelines 1.16RHODF-4.17-RHEL-9Red Hat Single Sign-On 7Migration Toolkit for VirtualizationRed Hat build of OptaPlanner 8Red Hat OpenShift distributed tracing 3Logging Subsystem for Red Hat OpenShiftRed Hat Quay 3Red Hat Process Automation 7Red Hat OpenShift Container Platform 4Red Hat Advanced Cluster Management for Kubernetes 2Red Hat Ansible Automation Platform 2Red Hat JBoss Enterprise Application Platform 8RHODF-4.15-RHEL-9Red Hat OpenShift Pipelines 1.19Red Hat OpenShift Pipelines 1.14.6Red Hat Advanced Cluster Security 4.5Red Hat Advanced Cluster Security 4.4Red Hat JBoss Enterprise Application Platform Expansion PackRed Hat OpenShift Container Platform 3.11Cryostat 3Red Hat OpenShift Pipelines 1.15Red Hat Fuse 7Red Hat OpenShift AI (RHOAI)Red Hat Enterprise Linux 10Red Hat Enterprise Linux 8OpenShift ServerlessRed Hat Advanced Cluster Security 4Red Hat Ceph Storage 8.1OpenShift Service Mesh 2Red Hat Ceph Storage 9.NET 6.0 on Red Hat Enterprise LinuxRed Hat Data Grid 8Red Hat Developer HubRed Hat Integration Camel K 1Red Hat Satellite 6OpenShift LightspeedRed Hat build of Apache Camel - HawtIO 4Red Hat Trusted Profile AnalyzerRHODF-4.14-RHEL-9RHODF-4.18-RHEL-9Red Hat Enterprise Linux 9Red Hat OpenShift Pipelines 1.18.0OpenShift PipelinesRed Hat OpenShift Pipelines 1.17Red Hat Discovery 1Red Hat Ceph Storage 9.0Red Hat OpenShift Dev SpacesRed Hat Ceph Storage 7Red Hat JBoss Enterprise Application Platform 7Red Hat 3scale API Management Platform 2Red Hat Ceph Storage 8RHODF-4.16-RHEL-9Red Hat build of Apicurio Registry 2
CWE ID-CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')