Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2020-8124

Published: 04/02/2020 Updated: 18/02/2020
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N
Subscribe to Url-parse

Vulnerability Summary

Insufficient validation and sanitization of user input exists in url-parse npm package version 1.4.4 and previous versions may allow malicious user to bypass security checks.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

url-parse project url-parse

Vendor Advisories

Red Hat: Moderate: Red Hat OpenShift Service Mesh 1.0.10 Jaeger and Kiali security update
Synopsis Moderate: Red Hat OpenShift Service Mesh 1010 Jaeger and Kiali security update Type/Severity Security Advisory: Moderate Topic An update for Jaeger and Kiali is now available for Openshift Service Mesh 10Red Hat Product Security has rated this update as having a security impact of Moderate A C ...

References

CWE-20https://hackerone.com/reports/496293https://access.redhat.com/errata/RHSA-2020:0972https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook