CVE-2020-13959
Last modified
CVE-2020-13959 is a medium-severity vulnerability rated 6.1/10 on the CVSS scale. The default error page for VelocityView in Apache Velocity Tools prior to 3.1 reflects back the vm file that was entered as part of the URL. An attacker can set an XSS payload file as this vm file in the URL which results in this payload being executed. EPSS estimates a 6.36% chance of exploitation in the next 30 days.
Description
The default error page for VelocityView in Apache Velocity Tools prior to 3.1 reflects back the vm file that was entered as part of the URL. An attacker can set an XSS payload file as this vm file in the URL which results in this payload being executed. XSS vulnerabilities allow attackers to execute arbitrary JavaScript in the context of the attacked website and the attacked user. This can be abused to steal session cookies, perform requests in the name of the victim or for phishing attacks.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Apache | Velocity Tools | < 3.1 |
| Debian | Debian Linux | 9.0 |
References
- http://www.openwall.com/lists/oss-security/2021/03/10/2Mailing List, Third Party Advisory
- https://lists.debian.org/debian-lts-announce/2021/03/msg00021.htmlMailing List, Third Party Advisory
- https://security.gentoo.org/glsa/202107-52Third Party Advisory
- http://www.openwall.com/lists/oss-security/2021/03/10/2Mailing List, Third Party Advisory
- https://lists.debian.org/debian-lts-announce/2021/03/msg00021.htmlMailing List, Third Party Advisory
- https://security.gentoo.org/glsa/202107-52Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-13959?
How severe is CVE-2020-13959?
How do I fix CVE-2020-13959?
Are you affected by CVE-2020-13959?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST