Lucene search
HistoryAug 15, 2022 - 8:15 p.m.
CVE-2020-21365
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.005 Low
EPSS
Percentile
76.0%
Directory traversal vulnerability in wkhtmltopdf through 0.12.5 allows remote attackers to read local files and disclose sensitive information via a crafted html file running with the default configurations.
Affected configurations
Node
wkhtmltopdfwkhtmltopdfRange≤0.12.5
Node
debiandebian_linuxMatch10.0
Related
ubuntucve
ubuntucve
CVE-2020-21365
2022-08-15 00:00:00
cvelist
cvelist
CVE-2020-21365
2022-08-15 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0407)
2022-11-07 00:00:00
Debian: Security Advisory (DLA-3158-1)
2022-10-25 00:00:00
Ubuntu: Security Advisory (USN-6232-1)
2023-07-21 00:00:00
nessus
nessus
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS : wkhtmltopdf vulnerability (USN-6232-1)
2023-07-20 00:00:00
Debian DLA-3158-1 : wkhtmltopdf - LTS security update
2022-10-25 00:00:00
prion
prion
Directory traversal
2022-08-15 20:15:00
debian
debian
[SECURITY] [DLA 3158-1] wkhtmltopdf security update
2022-10-24 16:29:14
mageia
mageia
Updated wkhtmltopdf packages fix security vulnerability
2022-11-05 00:16:03
ubuntu
ubuntu
wkhtmltopdf vulnerability
2023-07-20 00:00:00
osv
osv
CVE-2020-21365
2022-08-15 20:15:08
wkhtmltopdf vulnerability
2023-07-20 19:22:59
wkhtmltopdf - security update
2022-10-24 00:00:00
debiancve
debiancve
CVE-2020-21365
2022-08-15 20:15:08
cve
cve
CVE-2020-21365
2022-08-15 20:15:08
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.005 Low
EPSS
Percentile
76.0%
Related for NVD:CVE-2020-21365