CVE-2026-44371

Vulnerability Description

Open OnDemand is an open-source high-performance computing portal. Prior to 4.0.11, 4.1.5, and 4.2.2, specially crafted filenames can execute javascript in the file browser This vulnerability is fixed in 4.0.11, 4.1.5, and 4.2.2.

Related Weaknesses (CWE)

CWE-79

References

https://github.com/OSC/ondemand/security/advisories/GHSA-xcv4-m435-m33h

FAQ

What is CVE-2026-44371?

CVE-2026-44371 is a documented vulnerability. Open OnDemand is an open-source high-performance computing portal. Prior to 4.0.11, 4.1.5, and 4.2.2, specially crafted filenames can execute javascript in the file browser This vulnerability is fixed...

How severe is CVE-2026-44371?

CVSS scoring is not yet available for CVE-2026-44371. Check NVD for updates.

Is there a patch for CVE-2026-44371?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.