Security Advisory

CVE-2026-22233

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-08 17:11:11

Last updated 2026-01-08 17:51:26

Assigner cisa-cg

State PUBLISHED

Description

OPEXUS eCASE Audit allows an authenticated attacker to save JavaScript as a comment in the "Estimated Staff Hours" field. The JavaScript is executed whenever another user visits the Project Cost tab. Fixed in OPEXUS eCASE Audit 11.14.2.0.

← Browse all CVEs View on cve.org ↗