7 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-5529
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HtmlUnit prior to 2.37.0 contains code execution vulnerabilities. HtmlUnit initializes Rhino engine improperly, hence a malicious JavScript code can execute...
Mageia: Security Advisory (MGASA-2021-0148)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2021-0148 Updated htmlunit packages fix security vulnerability
It was discovered that HtmlUnit incorrectly initialized Rhino engine. An Attacker could possibly use this issue to execute arbitrary Java code CVE-2020-5529...
Updated htmlunit packages fix security vulnerability
It was discovered that HtmlUnit incorrectly initialized Rhino engine. An Attacker could possibly use this issue to execute arbitrary Java code CVE-2020-5529...
ai.preferred:venom (>=4.1.3 <=4.2.5), at.ganzleicht.vaadin:vaadin-client-compiler (>=9.1.1 <=9.1.2) +1594 more potentially affected by CVE-2020-5529 via net.sourceforge.htmlunit:htmlunit (>=1.14 <=2.36.0)
net.sourceforge.htmlunit:htmlunit MAVEN version =1.14, =4.1.3, =9.1.1, =1.0.0, =1.0.0, =1.0.0, =0.0.2, =1, =0.9.6, =0.9.6, =0.1.1, =0.5.0, =0.11.1, =0.30.0 and more Source cves: CVE-2020-5529 Source advisory: OSV:GHSA-5MH9-R3RR-9597...
CVE-2020-5529
CVE-2020-5529 affects HtmlUnit prior to 2.37.0, where improper Rhino engine initialization enables a malicious JavaScript to execute arbitrary Java code within the application. The issue also extends to Android environments where Android-specific Rhino initialization is mishandled, allowing simil...
CVE-2020-5529
Removed by vendor...