📦 Horizon

This vulnerability allows remote attackers to execute arbitrary Java code on OpenNMS Horizon and Meridian servers running vulnerable versions. It affects organizations using these network monitoring s...

This CVE describes a cross-site request forgery (CSRF) vulnerability in OpenNMS Meridian and Horizon monitoring platforms. Attackers can manipulate forms to perform unauthorized actions, potentially a...

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in OpenNMS Horizon and Meridian that allows attackers to trick administrators into granting ROLE_ADMIN privileges to normal users. ...

CVE-2021-3396 is an incorrect access control vulnerability in OpenNMS monitoring systems that allows attackers to execute arbitrary code using JEXL expressions. This affects OpenNMS Meridian 2016-2020...