Vulnerability Description
OpenNMS version 18.0.1 and prior are vulnerable to a stored XSS issue due to insufficient filtering of SNMP agent supplied data. By creating a malicious SNMP 'sysName' or 'sysContact' response, an attacker can store an XSS payload which will trigger when a user of the web UI views the data. This issue was fixed in version 18.0.2, released on September 20, 2016.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Opennms | Opennms | < 18.0.2-1 |
Related Weaknesses (CWE)
References
- https://github.com/OpenNMS/opennms/pull/1019PatchThird Party Advisory
- https://www.rapid7.com/blog/post/2016/11/15/r7-2016-24-opennms-stored-xss-via-snExploitThird Party Advisory
- https://github.com/OpenNMS/opennms/pull/1019PatchThird Party Advisory
- https://www.rapid7.com/blog/post/2016/11/15/r7-2016-24-opennms-stored-xss-via-snExploitThird Party Advisory
FAQ
What is CVE-2016-6556?
CVE-2016-6556 is a vulnerability with a CVSS score of 7.1 (HIGH). OpenNMS version 18.0.1 and prior are vulnerable to a stored XSS issue due to insufficient filtering of SNMP agent supplied data. By creating a malicious SNMP 'sysName' or 'sysContact' response, an att...
How severe is CVE-2016-6556?
CVE-2016-6556 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-6556?
Check the references section above for vendor advisories and patch information. Affected products include: Opennms Opennms.