CVE-2020-12082

CVE-2020-12082 affects the Web UI of Code Insight v7.x up to 2020 R1 (7.11.0-64), with a stored cross-site scripting (XSS) flaw. The Red Hat/EUVD/NVD entries corroborate a stored XSS in the Code Insight web UI, arising from unvalidated user data in certain UI areas. The available sources do not p...

CVE-2020-12083

CVE-2020-12083 affects FlexNet Code Insight (Code Insight v7.x up to 7.11.0-64, 2020 R1). The root cause is an elevated privileges issue related to how Spring MVC calls/responses are handled, allowing an attacker to escalate privileges within the affected application. Public records describe the ...