CVE-2020-1340
published 2020-06-09CVE-2020-1340: A spoofing vulnerability exists when the NuGetGallery does not properly sanitize input on package metadata values, aka 'NuGetGallery Spoofing Vulnerability'.
PriorityP424medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
EPSS
1.58%
72.4th percentile
A spoofing vulnerability exists when the NuGetGallery does not properly sanitize input on package metadata values, aka 'NuGetGallery Spoofing Vulnerability'.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | nugetgallery | < 2020.06.09 | 2020.06.09 |
| microsoft | nugetgallery | — | — |
| msrc | nugetgallery | — | — |
CVSS provenance
nvdv3.15.4MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
nvdv2.03.5LOWAV:N/AC:M/Au:S/C:N/I:P/A:N
vendor_msrc5.4HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-jfw3-6x4x-gprc: A spoofing vulnerability exists when the NuGetGallery does not properly sanitize input on package metadata values, aka 'NuGetGallery Spoofing Vulnerab
ghsa_unreviewed·2022-05-24
CVE-2020-1340 [LOW] GHSA-jfw3-6x4x-gprc: A spoofing vulnerability exists when the NuGetGallery does not properly sanitize input on package metadata values, aka 'NuGetGallery Spoofing Vulnerab
A spoofing vulnerability exists when the NuGetGallery does not properly sanitize input on package metadata values, aka 'NuGetGallery Spoofing Vulnerability'.
Microsoft
NuGetGallery Spoofing Vulnerability
vendor_msrc·2020-06-09·CVSS 5.4
CVE-2020-1340 [MEDIUM] NuGetGallery Spoofing Vulnerability
NuGetGallery Spoofing Vulnerability
Description: A spoofing vulnerability exists when the NuGetGallery does not properly sanitize input on package metadata values. An attacker who successfully exploited the vulnerability could perform cross-site scripting attacks and run scripts in the security context of the user viewing the malicious content.
To exploit this vulnerability, an attacker with permissions to upload packages could publish specially crafted content on a gallery page.
The security update addresses the vulnerability by correcting how NuGetGallery sanitizes input.
Open Source Software: Open Source Software
Microsoft: Microsoft
Impact: Spoofing
Exploit Status: Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:N/A;DOS:N/
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2020-6820 Mozilla: Use-after-free when handling a ReadableStream
bugzilla·2020-04-04·CVSS 8.1
CVE-2020-6820 [HIGH] CVE-2020-6820 Mozilla: Use-after-free when handling a ReadableStream
CVE-2020-6820 Mozilla: Use-after-free when handling a ReadableStream
As per Mozilla upstream advisory:
Under certain conditions, when handling a ReadableStream, a race condition can cause a use-after-free. We are aware of targeted attacks in the wild abusing this flaw.
Discussion:
Acknowledgments:
Name: the Mozilla project
Upstream: Francisco Alonso and Javier Marcos
---
External References:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-11/#CVE-2020-6820
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions
Via RHSA-2020:1340 https://access.redhat.com/errata/RHSA-2020:1340
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2020:1341 https://access
Bugzilla
CVE-2020-6819 Mozilla: Use-after-free while running the nsDocShell destructor
bugzilla·2020-04-04·CVSS 8.1
CVE-2020-6819 [HIGH] CVE-2020-6819 Mozilla: Use-after-free while running the nsDocShell destructor
CVE-2020-6819 Mozilla: Use-after-free while running the nsDocShell destructor
As per mozilla upstream advisory:
Under certain conditions, when running the nsDocShell destructor, a race condition can cause a use-after-free. We are aware of targeted attacks in the wild abusing this flaw.
Discussion:
Acknowledgments:
Name: the Mozilla project
Upstream: Francisco Alonso and Javier Marcos
---
External References:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-11/#CVE-2020-6819
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions
Via RHSA-2020:1340 https://access.redhat.com/errata/RHSA-2020:1340
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2020:13
2020-06-09
Published