Lucene search

CVE-2019-8331

🗓️ 20 Feb 2019 16:00:29Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 11 Media mentions👁 1266 Views

XSS possible in Bootstrap tooltip/popover data-templat

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 131
IBM Security Bulletins	Security Bulletin: IBM API Connect Developer Portal is affected by a cross site scripting vulnerability in Bootstrap (CVE-2019-8331)	4 Apr 201914:55	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Information Queue uses components with known vulnerabilities (CVE-2019-8331, CVE-2019-11358)	7 Apr 202016:23	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities may affect IBM Robotic Process Automation	2 Mar 202216:40	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities in bootstrap.js may affect IBM Business Automation Workflow	5 Jun 202320:05	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Storage Ceph is vulnerable to Cross-site Scripting in Ceph (CVE-2018-20677, CVE-2018-20676, CVE-2019-8331, CVE-2018-14042, CVE-2018-14040, CVE-2016-10735)	5 Aug 202420:00	–	ibm
IBM Security Bulletins	Security Bulletin: Open Source Dependency Vulnerability	15 May 202317:25	–	ibm
IBM Security Bulletins	Security Bulletin: There are several vulnerabilities in Bootstrap used by IBM Maximo Asset Management	4 Apr 202316:40	–	ibm
IBM Security Bulletins	Security Bulletin:Vulnerabiilties in swagger-ui and Bootstrap affect watsonx.data	27 Feb 202513:28	–	ibm
IBM Security Bulletins	Security Bulletin: Mutiple vulnerabilities in Bouncy Castle Crypto Package For Java may affect IBM Storage Scale GUI (CVE-2024-30171, CVE-2024-29857)	17 Sep 202420:35	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Engineering Workflow Management (EWM) vulnerabilities CVE-2020-28500, CVE-2021-23337, CVE-2020-8203	24 Apr 202314:58	–	ibm

Nvd

Node

getbootstrap bootstrapRange<3.4.1

getbootstrap bootstrapRange4.3.0–4.3.1

Node

f5 big-ip_access_policy_managerRange12.1.0–12.1.5.1

f5 big-ip_access_policy_managerRange13.0.0–13.1.3.4

f5 big-ip_access_policy_managerRange14.0.0–14.1.2.5

f5 big-ip_access_policy_managerRange15.0.0–15.1.0

f5 big-ip_advanced_firewall_managerRange12.1.0–12.1.5.1

f5 big-ip_advanced_firewall_managerRange13.0.0–13.1.3.4

f5 big-ip_advanced_firewall_managerRange14.0.0–14.1.2.5

f5 big-ip_advanced_firewall_managerRange15.0.0–15.1.0

f5 big-ip_analyticsRange12.1.0–12.1.5.1

f5 big-ip_analyticsRange13.0.0–13.1.3.4

f5 big-ip_analyticsRange14.0.0–14.1.2.5

f5 big-ip_analyticsRange15.0.0–15.1.0

f5 big-ip_application_acceleration_managerRange12.1.0–12.1.5.1

f5 big-ip_application_acceleration_managerRange13.0.0–13.1.3.4

f5 big-ip_application_acceleration_managerRange14.0.0–14.1.2.5

f5 big-ip_application_acceleration_managerRange15.0.0–15.1.0

f5 big-ip_application_security_managerRange12.1.0–12.1.5.1

f5 big-ip_application_security_managerRange13.0.0–13.1.3.4

f5 big-ip_application_security_managerRange14.0.0–14.1.2.5

f5 big-ip_application_security_managerRange15.0.0–15.1.0

f5 big-ip_domain_name_systemRange12.1.0–12.1.5.1

f5 big-ip_domain_name_systemRange13.0.0–13.1.3.4

f5 big-ip_domain_name_systemRange14.0.0–14.1.2.5

f5 big-ip_domain_name_systemRange15.0.0–15.1.0

f5 big-ip_edge_gatewayRange12.1.0–12.1.5.1

f5 big-ip_edge_gatewayRange13.0.0–13.1.3.4

f5 big-ip_edge_gatewayRange14.0.0–14.1.2.5

f5 big-ip_edge_gatewayRange15.0.0–15.1.0

f5 big-ip_fraud_protection_serviceRange12.1.0–12.1.5.1

f5 big-ip_fraud_protection_serviceRange13.0.0–13.1.3.4

f5 big-ip_fraud_protection_serviceRange14.0.0–14.1.2.5

f5 big-ip_fraud_protection_serviceRange15.0.0–15.1.0

f5 big-ip_global_traffic_managerRange12.1.0–12.1.5.1

f5 big-ip_global_traffic_managerRange13.0.0–13.1.3.4

f5 big-ip_global_traffic_managerRange14.0.0–14.1.2.5

f5 big-ip_global_traffic_managerRange15.0.0–15.1.0

f5 big-ip_link_controllerRange12.1.0–12.1.5.1

f5 big-ip_link_controllerRange13.0.0–13.1.3.4

f5 big-ip_link_controllerRange14.0.0–14.1.2.5

f5 big-ip_link_controllerRange15.0.0–15.1.0

f5 big-ip_local_traffic_managerRange12.1.0–12.1.5.1

f5 big-ip_local_traffic_managerRange13.0.0–13.1.3.4

f5 big-ip_local_traffic_managerRange14.0.0–14.1.2.5

f5 big-ip_local_traffic_managerRange15.0.0–15.1.0

f5 big-ip_policy_enforcement_managerRange12.1.0–12.1.5.1

f5 big-ip_policy_enforcement_managerRange13.0.0–13.1.3.4

f5 big-ip_policy_enforcement_managerRange14.0.0–14.1.2.5

f5 big-ip_policy_enforcement_managerRange15.0.0–15.1.0

f5 big-ip_webacceleratorRange12.1.0–12.1.5.1

f5 big-ip_webacceleratorRange13.0.0–13.1.3.4

f5 big-ip_webacceleratorRange14.0.0–14.1.2.5

f5 big-ip_webacceleratorRange15.0.0–15.1.0

Node

redhat virtualization_managerMatch4.3

Node

tenable tenable.scRange<5.19.0

Source	Link
lists	www.lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc%40%3Cissues.drill.apache.org%3E
github	www.github.com/twbs/bootstrap/pull/28236
support	www.support.f5.com/csp/article/K24383845
lists	www.lists.apache.org/thread.html/10f0f3aefd51444d1198c65f44ffdf2d78ca3359423dbc1c168c9731%40%3Cdev.flink.apache.org%3E
access	www.access.redhat.com/errata/RHSA-2019:1456
tenable	www.tenable.com/security/tns-2021-14
blog	www.blog.getbootstrap.com/2019/02/13/bootstrap-4-3-1-and-3-4-1/
seclists	www.seclists.org/fulldisclosure/2019/May/11
lists	www.lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f%40%3Cdev.drill.apache.org%3E
lists	www.lists.apache.org/thread.html/17ff53f7999e74fbe3cc0ceb4e1c3b00b180b7c5afec8e978837bc49%40%3Cuser.flink.apache.org%3E

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Feb 2019 16:29Current

5.8Medium risk

Vulners AI Score5.8

CVSS24.3

CVSS36.1

EPSS0.02292

CWE-79