NA

CVE-2019-20378

Published: 11/01/2020 Updated: 13/01/2020
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

ganglia-web (aka Ganglia Web Frontend) up to and including 3.7.5 allows XSS via the header.php ce parameter.

Vulnerability Trend

Affected Products

Vendor Product Versions
GangliaGanglia-web3.7.5

Vendor Advisories

Debian Bug report logs - #948664 ganglia-web: CVE-2019-20378 CVE-2019-20379 Package: src:ganglia-web; Maintainer for src:ganglia-web is Debian Monitoring Maintainers <pkg-monitoring-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 11 Jan 2020 13:42:01 UTC Severity ...