Security Bulletin: IBM InfoSphere Information Server is affected by a vulnerability in Marked (CVE-2017-1000427)

Summary Marked is used by a third party component that is used in IBM InfoSphere Information Server. A vulnerability in Marked was addressed. Vulnerability Details CVEID: CVE-2017-1000427 DESCRIPTION: Marked is vulnerable to cross-site scripting, caused by improper validation of user-supplied inp...

Fedora 32 : marked (2020-d714c08261)

The remote Fedora 32 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2020-d714c08261 advisory. New upstream release with bug and security fixes. Also, consolidates duplicate pakages marked and nodejs- marked. I tested upgrades from both, but m...

Fedora 31 : marked (2020-5eca570e16)

The remote Fedora 31 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2020-5eca570e16 advisory. New upstream release with bug and security fixes. Also, consolidates duplicate pakages marked and nodejs- marked. I tested upgrades from both, but m...

DEBIAN-CVE-2017-1000427

marked version 0.3.6 and earlier is vulnerable to an XSS attack in the data: URI parser...

CVE-2017-1000427

marked version 0.3.6 and earlier is vulnerable to an XSS attack in the data: URI parser...

CVE-2017-1000427

marked version 0.3.6 and earlier is vulnerable to an XSS attack in the data: URI parser...

CVE-2017-1000427

marked version 0.3.6 and earlier is vulnerable to an XSS attack in the data: URI parser...

CVE-2017-1000427

CVE-2017-1000427: Marked up to version 0.3.6 and earlier is vulnerable to cross-site scripting via the data: URI parser. This is an XSS in user-supplied input that can execute script in the victim’s browser when a crafted URL is clicked. The NVD shows CVSS v3.0 base score 6.1 (network, low attack...