CVE-2020-28919

Опубликовано: 15 янв. 2022

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 3.5

CVSS3: 5.4

Описание

A stored cross site scripting (XSS) vulnerability in Checkmk 1.6.0x prior to 1.6.0p19 allows an authenticated remote attacker to inject arbitrary JavaScript via a javascript: URL in a view title.

Релиз	Статус	Примечание
bionic	not-affected	code not present
esm-apps/bionic	not-affected	code not present
esm-apps/xenial	not-affected	code not present
trusty	ignored	end of standard support
upstream	released	1.6.0p19, 2.0.0i1
xenial	ignored	end of standard support

Показывать по

Ссылки на источники

EPSS

Процентиль: 46%

0.00229

Низкий

3.5 Low

CVSS2

5.4 Medium

CVSS3

Связанные уязвимости

CVE-2020-28919

CVSS3: 5.4

nvd

около 4 лет назад

A stored cross site scripting (XSS) vulnerability in Checkmk 1.6.0x prior to 1.6.0p19 allows an authenticated remote attacker to inject arbitrary JavaScript via a javascript: URL in a view title.

CVE-2020-28919

CVSS3: 5.4

debian

около 4 лет назад

A stored cross site scripting (XSS) vulnerability in Checkmk 1.6.0x pr ...

GHSA-wvr9-9j3f-xx78

CVSS3: 5.4

github

около 4 лет назад

A stored cross site scripting (XSS) vulnerability in Checkmk 1.6.0x prior to 1.6.0p19 allows an authenticated remote attacker to inject arbitrary JavaScript via a javascript: URL in a view title.

EPSS

Процентиль: 46%

0.00229

Низкий

3.5 Low

CVSS2

5.4 Medium

CVSS3

CVE-2020-28919

Описание

Пакет check-mk

Ссылки на источники

Связанные уязвимости