CVE-2014-7850

Опубликовано: 28 нояб. 2014

Источник: debian

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in the Web UI in FreeIPA 4.x before 4.1.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to breadcrumb navigation.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
freeipa	fixed	4.3.1-1		package

Примечания

https://fedorahosted.org/freeipa/ticket/4742
Upstream commit: https://pagure.io/freeipa/c/af9fd4dfe2c18e52127480c959c35ad37b566095

EPSS

Процентиль: 58%

0.00361

Низкий

Связанные уязвимости

CVE-2014-7850

ubuntu

около 11 лет назад

Cross-site scripting (XSS) vulnerability in the Web UI in FreeIPA 4.x before 4.1.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to breadcrumb navigation.

CVE-2014-7850

redhat

около 11 лет назад

Cross-site scripting (XSS) vulnerability in the Web UI in FreeIPA 4.x before 4.1.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to breadcrumb navigation.

CVE-2014-7850

nvd

около 11 лет назад

Cross-site scripting (XSS) vulnerability in the Web UI in FreeIPA 4.x before 4.1.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to breadcrumb navigation.

GHSA-fcqx-hxf2-pghj

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in the Web UI in FreeIPA 4.x before 4.1.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to breadcrumb navigation.

EPSS

Процентиль: 58%

0.00361

Низкий