8 matches found
CVE-2019-20920 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce...
Security Bulletin: Multiple security vulnerabilities are addressed with IBM Business Automation Manager Open Editions 8.0.2
Summary In addition to updates of open source dependencies, the following security vulnerabilities are addressed with IBM Business Automation Manager Open Editions 8.0.2 Vulnerability Details CVEID:CVE-2018-1000134 DESCRIPTION: Ping Identity UnboundID LDAP SDK could allow a remote attacker to...
101 (>=0.3.0 <=0.7.1), 3c (>=0.0.1 <=1.0.0-alpha) +3347 more potentially affected by CVE-2019-20920 via handlebars (>=1.0.10 <=3.0.7)
handlebars NPM version =1.0.10, =0.3.0, =0.0.1, =0.0.1, =1.0.0, =1.0.1, =1.0.0, =1.31.0, =0.1.16, =0.9.33, =0.9.33, =5.0.2, =5.0.3, =5.0.6, =5.0.7 and more Source cves: CVE-2019-20920 Source advisory: OSV:GHSA-3CQR-58RM-57F8...
@11ty/eleventy (=0.3.3), @36node/swagen (=0.1.2) +1580 more potentially affected by CVE-2019-20920 via handlebars (>=4.0.0 <=4.5.2)
handlebars NPM version =4.0.0, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.0.1, =3.0.0, =1.0.0, =0.1.0, =0.0.1, =1.0.2-alpha.0, =1.0.0, =0.0.2, =5.0.0, =6.0.10 and more Source cves: CVE-2019-20920 Source advisory: OSV:GHSA-3CQR-58RM-57F8...
Moderate: Red Hat Security Advisory: Red Hat OpenShift Enterprise security and bug fix update
Red Hat OpenShift Container Platform release 4.6.36 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which...
RHEL 8 : Red Hat Virtualization (RHSA-2020:5179)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5179 advisory. The org.ovirt.engine-root is a core component of oVirt. The following packages have been upgraded to a later upstream version: engine-db-que...
CVE-2019-20920
Handlebars before 3.0.8 and 4.x before 4.5.3 is vulnerable to Arbitrary Code Execution. The lookup helper fails to properly validate templates, allowing attackers to submit templates that execute arbitrary JavaScript. This can be used to run arbitrary code on a server processing Handlebars...
CVE-2019-20920
Technical details about CVE-2019-20920 are not publicly available in the provided connected documents. Monitor for updates.