CVE-2017-7400
OpenStack Horizon 9.x through 9.1.1, 10.x through 10.0.2, and 11.0.0 allows remote authenticated administrators to conduct XSS attacks via a crafted federation mapping.
| Software | From | Fixed in |
|---|---|---|
| openstack / horizon | 9.0.0 | 9.0.0.x |
| openstack / horizon | 9.1.1 | 9.1.1.x |
| openstack / horizon | 9.0.0-b1 | 9.0.0-b1.x |
| openstack / horizon | 10.0.0-b3 | 10.0.0-b3.x |
| openstack / horizon | 10.0.0 | 10.0.0.x |
| openstack / horizon | 9.0.0-rc1 | 9.0.0-rc1.x |
| openstack / horizon | 11.0.0 | 11.0.0.x |
| openstack / horizon | 9.0.0-rc2 | 9.0.0-rc2.x |
| openstack / horizon | 10.0.1 | 10.0.1.x |
| openstack / horizon | 10.0.0-rc1 | 10.0.0-rc1.x |
| openstack / horizon | 10.0.0-b1 | 10.0.0-b1.x |
| openstack / horizon | 10.0.2 | 10.0.2.x |
| openstack / horizon | 9.1.0 | 9.1.0.x |
| openstack / horizon | 10.0.0-b2 | 10.0.0-b2.x |
| openstack / horizon | 9.0.0-b3 | 9.0.0-b3.x |
| openstack / horizon | 9.0.1 | 9.0.1.x |
| openstack / horizon | 10.0.0-rc3 | 10.0.0-rc3.x |
| openstack / horizon | 9.0.0-b2 | 9.0.0-b2.x |
| openstack / horizon | 10.0.0-rc2 | 10.0.0-rc2.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime