CVE-2017-1000188
published 2017-11-17CVE-2017-1000188: nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in the ejs.renderFile() resulting in code injection
PriorityP424medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
EPSS
1.23%
65.3th percentile
nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in the ejs.renderFile() resulting in code injection
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | node-ejs | < node-ejs 2.5.7-1 (bookworm) | node-ejs 2.5.7-1 (bookworm) |
| ejs | ejs | < 2.5.5 | 2.5.5 |
| ejs | ejs | >= 0 < 2.5.5 | 2.5.5 |
CVSS provenance
nvdv3.06.1MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv6.1MEDIUM
vendor_debian6.1MEDIUM
vendor_redhat6.1MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
mde ejs vulnerable to XSS
osv·2017-11-30
CVE-2017-1000188 [MEDIUM] mde ejs vulnerable to XSS
mde ejs vulnerable to XSS
nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in the `ejs.renderFile()` resulting in code injection
GHSA
mde ejs vulnerable to XSS
ghsa·2017-11-30
CVE-2017-1000188 [MEDIUM] CWE-79 mde ejs vulnerable to XSS
mde ejs vulnerable to XSS
nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in the `ejs.renderFile()` resulting in code injection
OSV
CVE-2017-1000188: nodejs ejs version older than 2
osv·2017-11-17·CVSS 6.1
CVE-2017-1000188 [MEDIUM] CVE-2017-1000188: nodejs ejs version older than 2
nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in the ejs.renderFile() resulting in code injection
Debian
CVE-2017-1000188: node-ejs - nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in t...
vendor_debian·2017·CVSS 6.1
CVE-2017-1000188 [MEDIUM] CVE-2017-1000188: node-ejs - nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in t...
nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in the ejs.renderFile() resulting in code injection
Scope: local
bookworm: resolved (fixed in 2.5.7-1)
bullseye: resolved (fixed in 2.5.7-1)
forky: resolved (fixed in 2.5.7-1)
sid: resolved (fixed in 2.5.7-1)
trixie: resolved (fixed in 2.5.7-1)
Red Hat
nodejs-ejs: Cross-site scripting via ejs.renderFile()
vendor_redhat·2016-12-06·CVSS 6.1
CVE-2017-1000188 [MEDIUM] CWE-79 nodejs-ejs: Cross-site scripting via ejs.renderFile()
nodejs-ejs: Cross-site scripting via ejs.renderFile()
nodejs ejs version older than 2.5.5 is vulnerable to a Cross-site-scripting in the ejs.renderFile() resulting in code injection
Package: fh-appstore (Red Hat Mobile Application Platform 4) - Not affected
Package: fh-ngui (Red Hat Mobile Application Platform 4) - Not affected
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2017-1000188 nodejs-ejs: Cross-site scripting via ejs.renderFile()
bugzilla·2016-12-13·CVSS 6.1
CVE-2017-1000188 [MEDIUM] CVE-2017-1000188 nodejs-ejs: Cross-site scripting via ejs.renderFile()
CVE-2017-1000188 nodejs-ejs: Cross-site scripting via ejs.renderFile()
A cross-site scripting vulnerability was found in nodejs-ejs < 2.5.5 that allows the attacker under certain conditions control and override the filename option causing it to render the value as is, without escaping it.
Upstream patch:
https://github.com/mde/ejs/commit/49264e0037e313a0a3e033450b5c184112516d8f
External Reference:
https://snyk.io/vuln/npm:ejs:20161130
Discussion:
Created nodejs-ejs tracking bugs for this issue:
Affects: fedora-all [bug 1404189]
Affects: epel-all [bug 1404190]
Bugzilla
CVE-2017-1000188 CVE-2017-1000189 nodejs-ejs: various flaws [epel-all]
bugzilla·2016-12-13·CVSS 6.1
CVE-2017-1000188 [MEDIUM] CVE-2017-1000188 CVE-2017-1000189 nodejs-ejs: various flaws [epel-all]
CVE-2017-1000188 CVE-2017-1000189 nodejs-ejs: various flaws [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of Fe
Bugzilla
CVE-2017-1000188 CVE-2017-1000189 nodejs-ejs: various flaws [fedora-all]
bugzilla·2016-12-13·CVSS 6.1
CVE-2017-1000188 [MEDIUM] CVE-2017-1000188 CVE-2017-1000189 nodejs-ejs: various flaws [fedora-all]
CVE-2017-1000188 CVE-2017-1000189 nodejs-ejs: various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of Fedor
2017-11-17
Published