Lucene search

K
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2021-32809
HistoryAug 12, 2021 - 5:15 p.m.

CVE-2021-32809

2021-08-1217:15:00
Debian Security Bug Tracker
security-tracker.debian.org
12

0.002 Low

EPSS

Percentile

52.8%

ckeditor is an open source WYSIWYG HTML editor with rich content support. A potential vulnerability has been discovered in CKEditor 4 Clipboard package. The vulnerability allowed to abuse paste functionality using malformed HTML, which could result in injecting arbitrary HTML into the editor. It affects all users using the CKEditor 4 plugins listed above at version >= 4.5.2. The problem has been recognized and patched. The fix will be available in version 4.16.2.

0.002 Low

EPSS

Percentile

52.8%