Lucene search

GitHub Advisory DatabaseGHSA-643F-HPCC-2GV8

HistoryOct 20, 2023 - 12:30 a.m.

Yamcs Cross-site Scripting vulnerability

2023-10-2000:30:24

CWE-79

GitHub Advisory Database

github.com

yamcs

cross-site scripting

javascript

file upload

5.4 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

0.0004 Low

EPSS

Percentile

14.2%

JSON

Yamcs 5.8.6 allows XSS (issue 2 of 2). It comes with a Bucket as its primary storage mechanism. Buckets allow for the upload of any file. There’s a way to upload an HTML file containing arbitrary JavaScript and then navigate to it. Once the user opens the file, the browser will execute the arbitrary JavaScript.

Affected configurations

Vulners

Node

org.yamcs\Matchyamcs

CPENameOperatorVersion
org.yamcs:yamcslt5.8.7

CPE	Name	Operator	Version
	org.yamcs:yamcs	lt	5.8.7

References

github.com/advisories/GHSA-643f-hpcc-2gv8

github.com/yamcs/yamcs/compare/yamcs-5.8.6...yamcs-5.8.7

nvd.nist.gov/vuln/detail/CVE-2023-45280

www.linkedin.com/pulse/yamcs-vulnerability-assessment-visionspace-technologies