CVE-2026-28297 | SolarWinds Observability Self-Hosted 2025.2/2025.2.1 cross site scripting

Inserito da Angelo Barbosa | Mar 26, 2026 | CVE

A vulnerability labeled as problematic has been found in SolarWinds Observability Self-Hosted 2025.2/2025.2.1. This affects an unknown function. Such manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2026-28297. The attack requires being on the local network. There is not any exploit available.

The affected component should be upgraded.

CVE-2026-28297 | SolarWinds Observability Self-Hosted 2025.2/2025.2.1 cross site scripting

Post correlati

CVE-2024-37211 | Ali2Woo Lite Plugin up to 3.3.5 on WordPress cross site scripting

CVE-2024-5152 | ElementsReady Addons for Elementor Plugin up to 6.1.0 on WordPress cross site scripting

CVE-2024-27376 | Samsung Exynos 1330 slsi_nan_subscribe_get_nl_params heap-based overflow

CVE-2023-33110 | Qualcomm 4 Gen 1 Mobile Platform PCM Host Voice Audio Driver race condition