Lucene search
HistoryDec 27, 2022 - 9:15 p.m.
CVE-2020-36567
unsanitized input
default logger
arbitrary log lines
remote attackers
github.com/gin-gonic/gin
cve-2020-36567
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS
0.002
Percentile
54.9%
Unsanitized input in the default logger in github.com/gin-gonic/gin before v1.6.0 allows remote attackers to inject arbitrary log lines.
Affected configurations
Node
gin-gonicginRange<1.6.0
Related
cvelist
cvelist
CVE-2020-36567 Arbitrary log line injection in github.com/gin-gonic/gin
2022-12-27 20:58:14
osv
osv
CVE-2020-36567
2022-12-27 21:15:10
Gin's default logger allows unsanitized input that can allow remote attackers to inject arbitrary log lines
2022-12-27 21:30:20
Arbitrary log line injection in github.com/gin-gonic/gin
2021-04-14 20:04:52
ubuntucve
ubuntucve
CVE-2020-36567
2022-12-27 00:00:00
redhatcve
redhatcve
CVE-2020-36567
2022-12-28 07:04:51
github
github
cve
cve
CVE-2020-36567
2022-12-27 21:15:10
debiancve
debiancve
CVE-2020-36567
2022-12-27 21:15:10
prion
prion
Input validation
2022-12-27 21:15:00
veracode
veracode
Log Injection
2022-12-29 07:39:05
ibm
ibm
redhat
redhat
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS
0.002
Percentile
54.9%
Related for NVD:CVE-2020-36567