Known Vulnerabilities for products from Opennebula
Listed below are 7 of the newest known vulnerabilities associated with the vendor "Opennebula".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-56537 json | A stored cross-site scripting (XSS) vulnerability in opennebula v6.10.0.1 and fixed in v.7.0 allows attackers to execute arbi... | Not Provided | 2026-04-29 | 2026-04-30 |
| CVE-2025-56536 json | A stored cross-site scripting (XSS) vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts o... | Not Provided | 2026-04-29 | 2026-04-30 |
| CVE-2025-56535 json | A cross-site scripting (XSS) vulnerability in opennebula v6.10.0.1 allows attackers to execute arbitrary web scripts or HTML ... | Not Provided | 2026-04-29 | 2026-04-30 |
| CVE-2025-56534 json | A cross-site scripting (XSS) vulnerability in the custom authenticator driver of opennebula v6.10.0.1 allows attackers to exe... | Not Provided | 2026-04-29 | 2026-04-30 |
| CVE-2022-37426 json | Unrestricted Upload of File with Dangerous Type vulnerability in OpenNebula OpenNebula core on Linux allows File Content Inje... | 7.5 - HIGH | 2022-10-28 | 2023-11-30 |
| CVE-2022-37425 json | Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in OpenNebula OpenNebula co... | 9.8 - CRITICAL | 2022-10-28 | 2023-11-30 |
| CVE-2022-37424 json | Files or Directories Accessible to External Parties vulnerability in OpenNebula on Linux allows File Discovery. | 6.5 - MEDIUM | 2022-10-28 | 2023-11-30 |