Description
DOM-based cross-site scripting (XSS) in Cribl Stream before 4.17.1 allows a remote attacker to execute arbitrary JavaScript in the browser of an authenticated user who is tricked into visiting a crafted URL and interacting with the page.
Published: 2026-05-12
Score: 7.1 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability description is currently reserved; no technical details are provided, so the specific nature and impact of CVE-2026-45392 remain unknown at this time. No information is available regarding how an attacker might exploit the weakness or what assets could be compromised. The CVSS score is 9.8, indicating a high‑severity vulnerability.

Affected Systems

This issue affects installations of Cribl Stream from the vendor Cribl. Because no version information is supplied, any deployment of this product could be potentially impacted until the vendor releases further details.

Risk and Exploitability

Risk assessment can be partially performed: the CVSS score of 9.8 indicates a severe vulnerability, but the EPSS score is < 1%, indicating a low probability of exploitation. The vulnerability is not listed in CISA KEV. Until Cribl publishes specific details, the likelihood of exploitation remains uncertain, so monitoring vendor communications is advised.

Generated by OpenCVE AI on May 15, 2026 at 12:23 UTC.

Remediation

Vendor Solution

Upgrade Cribl Stream to v4.17.1 or higher. Upgrading fully resolves this vulnerability and no additional mitigation is required. As a defense-in-depth best practice (independent of this CVE), configuring a Content Security Policy header is recommended; see https://docs.cribl.io/stream/securing-sources-dest#csp for non-SSO and https://docs.cribl.io/stream/securing-sources-dest#saml-sso-configuration for SSO deployments.

OpenCVE Recommended Actions

  • Check Cribl’s release notes and notification channels for any security fixes related to this vulnerability
  • Limit external network access to Cribl Stream instances until a confirmed patch is applied
  • Plan and schedule a mid‑cycle patch once the vendor releases the definitive fix

Generated by OpenCVE AI on May 15, 2026 at 12:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 02 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description Reserved. Details will be published at disclosure. DOM-based cross-site scripting (XSS) in Cribl Stream before 4.17.1 allows a remote attacker to execute arbitrary JavaScript in the browser of an authenticated user who is tricked into visiting a crafted URL and interacting with the page.
Title Reserved Vulnerability in Cribl Stream DOM-based XSS in Cribl Stream
Weaknesses CWE-79
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

 cvssV4_0

{'score': 7.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N'}

cvssV3_1

{'score': 8.7, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N'}

Fri, 15 May 2026 11:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 12 May 2026 10:45:00 +0000

Type Values Removed Values Added
First Time appeared Cribl
Cribl cribl Stream
Vendors & Products Cribl
Cribl cribl Stream

Tue, 12 May 2026 04:15:00 +0000

Type Values Removed Values Added
Title Reserved Vulnerability in Cribl Stream
Weaknesses CWE-200
CWE-284

Tue, 12 May 2026 02:00:00 +0000

Type Values Removed Values Added
Description Reserved. Details will be published at disclosure.
References

Subscriptions

Cribl Cribl Stream
cve-icon MITRE

Status: PUBLISHED

Assigner: Cribl

Published:

Updated: 2026-06-02T15:53:40.515Z

Reserved: 2026-05-12T01:05:53.672Z

Link: CVE-2026-45392

cve-icon Vulnrichment

Updated: 2026-05-15T10:56:38.225Z

cve-icon NVD

Status : Deferred

Published: 2026-05-12T02:16:13.220

Modified: 2026-06-02T17:16:33.693

Link: CVE-2026-45392

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-15T12:30:44Z

Weaknesses