Published: 06/04/2021 Updated: 13/03/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8

VMScore: 384

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Sidekiq up to and including 5.1.3 and 6.x up to and including 6.2.0 allows XSS via the queue name of the live-poll feature when Internet Explorer is used.

Vulnerable Product	Search on Vulmon	Subscribe to Product
contribsys sidekiq
debian debian linux 9.0

Synopsis Moderate: Satellite 611 Release Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update is now available for Red Hat Satellite 611 Description Red Hat Satellite is a systems management tool for Linux-basedin ...

Debian Bug report logs - #987354 CVE-2021-30151 Package: ruby-sidekiq; Maintainer for ruby-sidekiq is Debian Ruby Extras Maintainers <pkg-ruby-extras-maintainers@listsaliothdebianorg>; Source for ruby-sidekiq is src:ruby-sidekiq (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Thu, 22 A ...

Sidekiq through 513 and 6x through 620 allows XSS via the queue name of the live-poll feature when Internet Explorer is used ...

CWE-79 https://github.com/mperham/sidekiq/issues/4852 https://lists.debian.org/debian-lts-announce/2022/03/msg00015.html https://lists.debian.org/debian-lts-announce/2023/03/msg00011.html https://access.redhat.com/errata/RHSA-2022:5498 https://nvd.nist.gov

CVE-2021-30151

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect