OpenCTI has XSS in the rendering of email-message observable body...

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

Description

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Versions prior to 7.260227.0 are vulnerable to XSS in the rendering of email-message observable body data. The content of the body field isn't appropriately sanitized when being rendered. Does require user interaction but could be exploited by someone sharing stix or any of the ingester. This could lead to CSRF and then large scale session theft. Version 7.260227.0 contains a fix.

Basic Information

ID CVE-2026-35212

Source GitHub_M

Published Jun 2, 2026 at 21:28

Affected Product

Vendor OpenCTI-Platform

Product opencti

Version < 7.260227.0

Affected Versions OpenCTI-Platform opencti < 7.260227.0

CWE Classification

CWE-79

References

github.com /OpenCTI-Platform/opencti/security/advisories/GHSA-rg6r-x26x-63vq

{
    "lastseen": "",
    "description": "OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Versions prior to 7.260227.0 are vulnerable to XSS in the rendering of email-message observable body data. The content of the body field isn't appropriately sanitized when being rendered. Does require user interaction but could be exploited by someone sharing stix or any of the ingester. This could lead to CSRF and then large scale session theft. Version 7.260227.0 contains a fix.",
    "published": "2026-06-02T21:28:59.375Z",
    "modified": "2026-06-02T21:28:59.375Z",
    "type": "cve",
    "title": "OpenCTI has XSS in the rendering of email-message observable body data",
    "source": "GitHub_M",
    "references": "https://github.com/OpenCTI-Platform/opencti/security/advisories/GHSA-rg6r-x26x-63vq",
    "id": "CVE-2026-35212",
    "bulletinFamily": "",
    "cwe": [
        "CWE-79"
    ],
    "cvelist": null,
    "sourceData": "OpenCTI-Platform opencti < 7.260227.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "opencti",
    "version": "< 7.260227.0",
    "vendor": "OpenCTI-Platform",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

OpenCTI has XSS in the rendering of email-message observable body data_CVE-2026-35212