CVE-2020-14413

{"id": "CVE-2020-14413", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.8}]}, "published": "2020-06-29T17:15:11.113", "references": [{"url": "https://gist.github.com/farid007/8db2ab5367ba00e87f9479b32d46fea8", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://gist.github.com/farid007/8db2ab5367ba00e87f9479b32d46fea8", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "NeDi 1.9C is vulnerable to XSS because of an incorrect implementation of sanitize() in inc/libmisc.php. This function attempts to escape the SCRIPT tag from user-controllable values, but can be easily bypassed, as demonstrated by an onerror attribute of an IMG element as a Devices-Config.php?sta= value."}, {"lang": "es", "value": "NeDi versi\u00f3n 1.9C, es vulnerable a un ataque de tipo XSS debido a una implementaci\u00f3n incorrecta de la funci\u00f3n sanitize() en el archivo inc/libmisc.php. Esta funci\u00f3n intenta escapar la etiqueta SCRIPT de los valores controlables por el usuario, pero puede ser omitido f\u00e1cilmente, como es demostrado por un atributo onerror de un elemento IMG como un valor Devices-Config.php?Sta="}], "lastModified": "2024-11-21T05:03:12.797", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:nedi:nedi:1.9c:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F0BB6C22-9477-4233-874F-7FA0717789AF"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}