Published: 11/02/2020 Updated: 07/12/2023

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.1 | Impact Score: 5.9 | Exploitability Score: 2.2

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

HtmlUnit before 2.37.0 contains code execution vulnerabilities. HtmlUnit initializes Rhino engine improperly, hence a malicious JavScript code can execute arbitrary Java code on the application. Moreover, when embedded in Android application, Android-specific initialization of Rhino engine is done in an improper way, hence a malicious JavaScript code can execute arbitrary Java code on the application.

Vulnerable Product	Search on Vulmon	Subscribe to Product
htmlunit htmlunit
debian debian linux 9.0
canonical ubuntu linux 16.04
apache camel -

Bitbucket Plugin for Jenkins About Bitbucket plugin is designed to offer integration between Bitbucket and Jenkins It exposes a single URI endpoint that you can add as a WebHook within each Bitbucket project you wish to integrate with This single endpoint receives a full data payload from Bitbucket upon push (see their documentation), triggering compatible jobs to build b

CWE-665 https://jvn.jp/en/jp/JVN34535327/https://github.com/HtmlUnit/htmlunit/releases/tag/2.37.0 https://lists.debian.org/debian-lts-announce/2020/08/msg00023.html https://usn.ubuntu.com/4584-1/https://lists.apache.org/thread.html/ra2cd7f8e61dc6b8a2d9065094cd1f46aa63ad10f237ee363e26e8563%40%3Ccommits.camel.apache.org%3E https://nvd.nist.gov https://github.com/jenkinsci/bitbucket-plugin

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-5529

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect