CVE-2019-1020019

Опубликовано: 29 июл. 2019

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Низкий

Описание

invenio-previewer before 1.0.0a12 allows XSS.

Ссылки

https://github.com/inveniosoftware/invenio-previewer/security/advisories/GHSA-j9m2-6hq2-4r3c
Exploit
Mitigation
Third Party Advisory
https://github.com/inveniosoftware/invenio-previewer/security/advisories/GHSA-j9m2-6hq2-4r3c
Exploit
Mitigation
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:inveniosoftware:invenio-previewer:0.1.0:*:*:*:*:*:*:*

cpe:2.3:a:inveniosoftware:invenio-previewer:1.0.0:a1:*:*:*:*:*:*

cpe:2.3:a:inveniosoftware:invenio-previewer:1.0.0:a10:*:*:*:*:*:*

cpe:2.3:a:inveniosoftware:invenio-previewer:1.0.0:a11:*:*:*:*:*:*

cpe:2.3:a:inveniosoftware:invenio-previewer:1.0.0:a12:*:*:*:*:*:*

cpe:2.3:a:inveniosoftware:invenio-previewer:1.0.0:a2:*:*:*:*:*:*

cpe:2.3:a:inveniosoftware:invenio-previewer:1.0.0:a3:*:*:*:*:*:*

cpe:2.3:a:inveniosoftware:invenio-previewer:1.0.0:a4:*:*:*:*:*:*

cpe:2.3:a:inveniosoftware:invenio-previewer:1.0.0:a5:*:*:*:*:*:*

cpe:2.3:a:inveniosoftware:invenio-previewer:1.0.0:a6:*:*:*:*:*:*

cpe:2.3:a:inveniosoftware:invenio-previewer:1.0.0:a7:*:*:*:*:*:*

cpe:2.3:a:inveniosoftware:invenio-previewer:1.0.0:a8:*:*:*:*:*:*

cpe:2.3:a:inveniosoftware:invenio-previewer:1.0.0:a9:*:*:*:*:*:*

EPSS

Процентиль: 45%

0.00226

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-j9m2-6hq2-4r3c