CVE-2018-6806

Опубликовано: 07 фев. 2018

Источник: nvd

CVSS3: 6.5

CVSS2: 4.3

EPSS Низкий

Описание

Marked 2 through 2.5.11 allows remote attackers to read arbitrary files via a crafted HTML document that triggers a redirect to an x-marked://preview?text= URL. The value of the text parameter can include arbitrary JavaScript code, e.g., making XMLHttpRequest calls.

Ссылки

http://support.markedapp.com/discussions/questions/9089-reporting-a-vulnerability
Issue Tracking
Third Party Advisory
http://www.lynxsecurity.io/releases/Local%20File%20Disclosure%20in%20Marked2.pdf
Exploit
Third Party Advisory
http://support.markedapp.com/discussions/questions/9089-reporting-a-vulnerability
Issue Tracking
Third Party Advisory
http://www.lynxsecurity.io/releases/Local%20File%20Disclosure%20in%20Marked2.pdf
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:marked_2_project:marked_2:*:*:*:*:*:*:*:*

Версия до 2.5.11 (включая)

EPSS

Процентиль: 69%

0.0059

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-f8gc-r5jf-vqfm