Skip to the content.

CVE-2021-42083 - Authenticated Stored XSS in OSNEXUS QuantaStor

CVE CVE-2021-42083
Affected products
Product Affected Unaffected Unknown
OSNEXUS QuantaStor on Windows, Linux >= semver 0 to <
everything else
CVSS Base score: 8.7 (HIGH)
Problem type(s) CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Solution(s) Upgrade to the latest version of OSNEXUS QuantaStor.
Last modified 05 Jul 2023 21:48


An authenticated attacker is able to create alerts that trigger a stored XSS attack. 

JSON version