mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
67 lines
2.3 KiB
JSON
67 lines
2.3 KiB
JSON
{
|
|
"data_type": "CVE",
|
|
"data_format": "MITRE",
|
|
"data_version": "4.0",
|
|
"CVE_data_meta": {
|
|
"ID": "CVE-2020-9299",
|
|
"ASSIGNER": "security-report@netflix.com",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "n/a",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "Netflix Dispatch",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "All versions prior to v20201106"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Multiple Cross-Site Scripting Vulnerabilities"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"refsource": "MISC",
|
|
"name": "https://github.com/Netflix/dispatch/releases/tag/v20201106",
|
|
"url": "https://github.com/Netflix/dispatch/releases/tag/v20201106"
|
|
},
|
|
{
|
|
"refsource": "MISC",
|
|
"name": "https://github.com/Netflix/security-bulletins/blob/master/advisories/nflx-2020-004.md",
|
|
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/nflx-2020-004.md"
|
|
}
|
|
]
|
|
},
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "There were XSS vulnerabilities discovered and reported in the Dispatch application, affecting name and description parameters of Incident Priority, Incident Type, Tag Type, and Incident Filter. This vulnerability can be exploited by an authenticated user."
|
|
}
|
|
]
|
|
}
|
|
} |