{"id":"USN-2323-1","summary":"horizon vulnerabilities","details":"Jason Hullinger discovered that OpenStack Horizon did not properly perform\ninput sanitization on Heat templates. If a user were tricked into using a\nspecially crafted Heat template, an attacker could conduct cross-site\nscripting attacks. With cross-site scripting vulnerabilities, if a user\nwere tricked into viewing server output during a crafted server request, a\nremote attacker could exploit this to modify the contents, or steal\nconfidential data, within the same domain. (CVE-2014-3473)\n\nCraig Lorentzen discovered that OpenStack Horizon did not properly perform\ninput sanitization when creating networks. If a user were tricked into\nlaunching an image using the crafted network name, an attacker could\nconduct cross-site scripting attacks. (CVE-2014-3474)\n\nMichael Xin discovered that OpenStack Horizon did not properly perform\ninput sanitization when adding users. If an admin user were tricked into\nviewing the users page containing a crafted email address, an attacker\ncould conduct cross-site scripting attacks. (CVE-2014-3475)\n\nDennis Felsch and Mario Heiderich discovered that OpenStack Horizon did not\nproperly perform input sanitization when creating host aggregates. If an\nadmin user were tricked into viewing the Host Aggregates page containing a\ncrafted availability zone name, an attacker could conduct cross-site\nscripting attacks. (CVE-2014-3594)\n","modified":"2026-02-10T04:40:49Z","published":"2014-08-21T20:51:32Z","related":["UBUNTU-CVE-2014-3473","UBUNTU-CVE-2014-3474","UBUNTU-CVE-2014-3475","UBUNTU-CVE-2014-3594","UBUNTU-CVE-2014-8578"],"upstream":["CVE-2014-3473","CVE-2014-3474","CVE-2014-3475","CVE-2014-3594","UBUNTU-CVE-2014-3473","UBUNTU-CVE-2014-3474","UBUNTU-CVE-2014-3475","UBUNTU-CVE-2014-3594"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-2323-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-3473"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-3474"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-3475"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2014-3594"}],"affected":[{"package":{"name":"horizon","ecosystem":"Ubuntu:14.04:LTS","purl":"pkg:deb/ubuntu/horizon@1:2014.1.2-0ubuntu1.1?arch=source&distro=trusty"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:2014.1.2-0ubuntu1.1"}]}],"versions":["1:2013.2~rc3-0ubuntu1","1:2013.2-0ubuntu1","1:2014.1~b1-0ubuntu1","1:2014.1~b2-0ubuntu1","1:2014.1~b2-0ubuntu2","1:2014.1~b3-0ubuntu1","1:2014.1~b3-0ubuntu2","1:2014.1~rc1-0ubuntu1","1:2014.1~rc2-0ubuntu1","1:2014.1-0ubuntu1","1:2014.1.1-0ubuntu1","1:2014.1.2-0ubuntu1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"1:2014.1.2-0ubuntu1.1","binary_name":"openstack-dashboard"},{"binary_version":"1:2014.1.2-0ubuntu1.1","binary_name":"openstack-dashboard-ubuntu-theme"},{"binary_version":"1:2014.1.2-0ubuntu1.1","binary_name":"python-django-horizon"},{"binary_version":"1:2014.1.2-0ubuntu1.1","binary_name":"python-django-openstack"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:14.04:LTS","cves":[{"severity":[{"type":"Ubuntu","score":"medium"}],"id":"CVE-2014-3594"}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2323-1.json"}}],"schema_version":"1.7.3"}