Veracode Vulnerability DatabaseVERACODE:44362Cross Site Scripting (XSS)
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L
AI Score
Confidence
High
EPSS
Percentile
44.5%
nautobot is vulnerable to Cross-site Scripting (XSS). The vulnerability is due to improper usage of Django’s mark_safe() API during the rendering of user-generated content, including personalized links, job buttons, and computed fields. This introduces a vulnerability that allows users with the ability to create or modify such content to construct malicious payloads that will be executed when pages containing this content are rendered.
References
docs.djangoproject.com/en/3.2/ref/utils/#django.utils.html.format_html
docs.djangoproject.com/en/3.2/ref/utils/#django.utils.safestring.mark_safe
github.com/nautobot/nautobot/commit/362850f5a94689a4c75e3188bf6de826c3b012b2
github.com/nautobot/nautobot/commit/54abe23331b6c3d0d82bf1b028c679b1d200920d
github.com/nautobot/nautobot/pull/4832
github.com/nautobot/nautobot/pull/4833
github.com/nautobot/nautobot/security/advisories/GHSA-cf9f-wmhp-v4pr
Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L
AI Score
Confidence
High
EPSS
Percentile
44.5%