Description
Storage Concentrator (SC & SCVM) is vulnerable to reflected cross-site scripting due to unsanitized content being echoed back in 404 error pages. An attacker can craft a malicious URL that, when visited by an authenticated user, causes arbitrary script content to execute within the victim's browser session in the context of the application. This could be leveraged to steal session cookies, redirect users, or perform unauthorized actions on behalf of the victim.
Published: 2026-06-30
Score: 5.1 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a reflected cross‑site scripting flaw in StoneFly Storage Concentrator and its virtual machine edition. Unsanitized user input is echoed back in 404 error pages. An attacker can craft a malicious URL, and when an authenticated user follows it, arbitrary JavaScript is executed inside the victim’s browser session in the context of the application. This allows the attacker to steal session cookies, redirect the user, or perform unauthorized actions as the victim.

Affected Systems

The affected products are StoneFly Storage Concentrator and StoneFly Storage Concentrator Virtual Machine. All releases older than Storage Concentrator version 8.0.4.29 are vulnerable; the vendor recommends upgrading to 8.0.4.29 or later.

Risk and Exploitability

The CVSS score of 5.1 indicates moderate risk. EPSS data is not available and the vulnerability is not listed in CISA’s KEV catalog, suggesting limited publicly known exploitation. The likely attack vector requires a malicious link to be presented to an authenticated user, who then initiates the reflected XSS. If successfully exploited, the attacker could hijack user sessions or carry out malicious actions within the affected application. The overall risk is moderate, but organizations should still treat it with priority because of the potential for credential theft and unauthorized operations.

Generated by OpenCVE AI on June 30, 2026 at 23:20 UTC.

Remediation

Vendor Solution

StoneFly recommends that users upgrade to Storage Concentrator version 8.0.4.29 or later to remediate these vulnerabilities.


OpenCVE Recommended Actions

  • Upgrade the Storage Concentrator and its virtual machine to version 8.0.4.29 or later as recommended by StoneFly.
  • Apply a Content Security Policy that restricts executable code to trusted sources to reduce the impact of any remaining reflected input.
  • Review and tighten error‑page handling so that user input is fully sanitized before it is displayed, and enforce role‑based access control to limit exposure of error pages to authenticated users.

Generated by OpenCVE AI on June 30, 2026 at 23:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 30 Jun 2026 22:45:00 +0000

Type Values Removed Values Added
Description Storage Concentrator (SC & SCVM) is vulnerable to reflected cross-site scripting due to unsanitized content being echoed back in 404 error pages. An attacker can craft a malicious URL that, when visited by an authenticated user, causes arbitrary script content to execute within the victim's browser session in the context of the application. This could be leveraged to steal session cookies, redirect users, or perform unauthorized actions on behalf of the victim.
Title Cross-site Scripting in StoneFly Storage Concentrator
Weaknesses CWE-79
References
Metrics cvssV3_1

{'score': 6.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N'}

cvssV4_0

{'score': 5.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:L/SI:N/SA:N'}


Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published:

Updated: 2026-06-30T22:27:37.001Z

Reserved: 2026-06-22T20:13:36.524Z

Link: CVE-2026-50040

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-30T23:30:04Z

Weaknesses
  • CWE-79

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')