CVE-2020-8189

Опубликовано: 21 авг. 2020

Источник: ubuntu

Приоритет: low

CVSS2: 3.5

CVSS3: 5.4

Описание

A cross-site scripting error in Nextcloud Desktop client 2.6.4 allowed to present any html (including local links) when responding with invalid data on the login attempt.

Релиз	Статус	Примечание
bionic	DNE
devel	not-affected	3.0.1-3
esm-apps/focal	needs-triage
esm-apps/jammy	not-affected	3.0.1-3
esm-apps/noble	not-affected	3.0.1-3
esm-infra-legacy/trusty	DNE
focal	ignored	end of standard support, was needs-triage
groovy	ignored	end of life
hirsute	not-affected	3.0.1-3
impish	not-affected	3.0.1-3

Показывать по

Ссылки на источники

3.5 Low

CVSS2

5.4 Medium

CVSS3

Связанные уязвимости

CVE-2020-8189

CVSS3: 5.4

nvd

больше 5 лет назад

A cross-site scripting error in Nextcloud Desktop client 2.6.4 allowed to present any html (including local links) when responding with invalid data on the login attempt.

CVE-2020-8189

CVSS3: 5.4

debian

больше 5 лет назад

A cross-site scripting error in Nextcloud Desktop client 2.6.4 allowed ...

GHSA-vc58-g8xx-fx3p

CVSS3: 5.4

github

больше 3 лет назад

A cross-site scripting error in Nextcloud Desktop client 2.6.4 allowed to present any html (including local links) when responding with invalid data on the login attempt.

3.5 Low

CVSS2

5.4 Medium

CVSS3

CVE-2020-8189

Описание

Пакет nextcloud-desktop

Ссылки на источники

Связанные уязвимости