Known Vulnerabilities for products from Opennms
Listed below are 16 of the newest known vulnerabilities associated with the vendor "Opennms".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-25935 | In OpenNMS Horizon, versions opennms-17.0.0-1 through opennms-27.1.0-1; OpenNMS Meridian, versions meridian-foundation-2015.1... | 5.4 - MEDIUM | 2021-05-25 | 2021-06-03 |
| CVE-2021-25934 | In OpenNMS Horizon, versions opennms-18.0.0-1 through opennms-27.1.0-1; OpenNMS Meridian, versions meridian-foundation-2015.1... | 5.4 - MEDIUM | 2021-05-25 | 2021-06-03 |
| CVE-2021-25933 | In OpenNMS Horizon, versions opennms-1-0-stable through opennms-27.1.0-1; OpenNMS Meridian, versions meridian-foundation-2015... | 4.8 - MEDIUM | 2021-05-20 | 2023-11-07 |
| CVE-2021-25932 | In OpenNMS Horizon, versions opennms-1-0-stable through opennms-27.1.0-1; OpenNMS Meridian, versions meridian-foundation-2015... | 5.4 - MEDIUM | 2021-06-01 | 2021-06-11 |
| CVE-2021-25931 | In OpenNMS Horizon, versions opennms-1-0-stable through opennms-27.1.0-1; OpenNMS Meridian, versions meridian-foundation-2015... | 8.8 - HIGH | 2021-05-20 | 2021-05-26 |
| CVE-2021-25930 | In OpenNMS Horizon, versions opennms-1-0-stable through opennms-27.1.0-1; OpenNMS Meridian, versions meridian-foundation-2015... | 4.3 - MEDIUM | 2021-05-20 | 2021-05-26 |
| CVE-2021-25929 | In OpenNMS Horizon, versions opennms-1-0-stable through opennms-27.1.0-1; OpenNMS Meridian, versions meridian-foundation-2015... | 4.8 - MEDIUM | 2021-05-20 | 2021-05-26 |
| CVE-2021-3396 | OpenNMS Meridian 2016, 2017, 2018 before 2018.1.25, 2019 before 2019.1.16, and 2020 before 2020.1.5, Horizon 1.2 through 27.0... | 8.8 - HIGH | 2021-02-17 | 2022-07-12 |
| CVE-2020-12760 | An issue was discovered in OpenNMS Horizon before 26.0.1, and Meridian before 2018.1.19 and 2019 before 2019.1.7. The ActiveM... | 8.8 - HIGH | 2020-05-11 | 2020-05-13 |
| CVE-2020-11886 | OpenNMS Horizon and Meridian allows HQL Injection in element/nodeList.htm (aka the NodeListController) via snmpParm or snmpPa... | 8.1 - HIGH | 2020-04-17 | 2020-05-05 |
| CVE-2020-1652 | OpenNMS is accessible via port 9443 | 9.8 - CRITICAL | 2020-07-17 | 2020-07-31 |
| CVE-2016-6556 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2021-09-24 | 2021-10-01 |
| CVE-2016-6555 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2021-09-24 | 2021-10-01 |
| CVE-2015-7856 | OpenNMS has a default password of rtc for the rtc account, which makes it easier for remote attackers to obtain access by lev... | 10 - HIGH | 2015-10-16 | 2015-10-19 |
| CVE-2014-3960 | Multiple cross-site scripting (XSS) vulnerabilities in OpenNMS before 1.12.7 allow remote attackers to inject arbitrary web s... | 4.3 - MEDIUM | 2014-06-04 | 2014-06-05 |
| CVE-2008-6095 | Cross-site scripting (XSS) vulnerability in surveillanceView.htm in OpenNMS 1.5.94 allows remote attackers to inject arbitrar... | 4.3 - MEDIUM | 2009-02-09 | 2017-08-08 |
Known software with vulnerabilities from Opennms
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Opennms | Horizon | 17.0.0 |
| Application | Opennms | Meridian | 2017 |
| Application | Opennms | Opennms | - |
| Application | Opennms | Opennms Horizon | 26.1.0 |
| Application | Opennms | Opennms Meridian | 2018.1.19 |