You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
OpenC3 Cross-site Scripting in Login functionality (`GHSL-2024-128`)
Moderate severity
GitHub Reviewed
Published
Oct 2, 2024
in
OpenC3/cosmos
•
Updated Oct 14, 2024
Summary
The login functionality contains a reflected cross-site scripting (XSS) vulnerability.
Note: This CVE only affects Open Source Edition, and not OpenC3 COSMOS Enterprise Edition
Impact
This issue may lead up to Remote Code Execution (RCE).
References