CVE-2017-18635
MEDIUM6.1EPSS 6.5%Cross-Site Scripting in @novnc/novnc
發布日:2020/8/28修改日:2023/11/8
描述
Versions of `@novnc/novnc` prior to 0.6.2 are vulnerable to Cross-Site Scripting (XSS). The package fails to validate input from the remote VNC server such as the VNC server name. This allows an attacker in control of the remote server to execute arbitrary JavaScript in the noVNC web page. It affects any users of `include/ui.js` and users of `vnc_auto.html` and `vnc.html`. ## Recommendation Upgrade to version 0.6.2 or later.
受影響套件(4)
- Debian/novncfrom 0, < 1:1.0.0-1
- Debian/novncfrom 0, < 1:0.4+dfsg+1+20131010+gitf68af8af3d-4+deb8u1
- Debian/novncfrom 0, < 1:0.4+dfsg+1+20131010+gitf68af8af3d-6+deb9u1
- npm/@novnc/novncfrom 0, < 0.6.2
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.1 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
參考連結(15)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2017-18635
- ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2017-18635
- PATCHhttps://github.com/novnc/noVNC
- WEBhttps://access.redhat.com/errata/RHSA-2020:0754
- WEBhttps://bugs.launchpad.net/horizon/+bug/1656435
- WEBhttps://github.com/novnc/noVNC/commit/6048299a138e078aed210f163111698c8c526a13#diff-286f7dc7b881e942e97cd50c10898f03L534
- WEBhttps://github.com/novnc/noVNC/issues/748
- WEBhttps://github.com/novnc/noVNC/releases/tag/v0.6.2
- WEBhttps://github.com/ShielderSec/cve-2017-18635
- WEBhttps://lists.debian.org/debian-lts-announce/2019/10/msg00004.html
- WEBhttps://lists.debian.org/debian-lts-announce/2021/12/msg00024.html
- WEBhttps://snyk.io/vuln/SNYK-JS-NOVNCNOVNC-469136
- WEBhttps://usn.ubuntu.com/4522-1
- WEBhttps://www.npmjs.com/advisories/1204
- WEBhttps://www.shielder.it/blog/exploiting-an-old-novnc-xss-cve-2017-18635-in-openstack