Lucene search
JpcertCVELIST:CVE-2020-5529HistoryFeb 11, 2020 - 8:35 a.m.
CVE-2020-5529
2020-02-1108:35:12
jpcert
www.cve.org
7
HtmlUnit prior to 2.37.0 contains code execution vulnerabilities. HtmlUnit initializes Rhino engine improperly, hence a malicious JavScript code can execute arbitrary Java code on the application. Moreover, when embedded in Android application, Android-specific initialization of Rhino engine is done in an improper way, hence a malicious JavaScript code can execute arbitrary Java code on the application.
CNA Affected
[
{
"product": "HtmlUnit",
"vendor": "HtmlUnit Project",
"versions": [
{
"status": "affected",
"version": "prior to 2.37.0"
}
]
}
]Related
osv
osv
CVE-2020-5529
2020-02-11 12:15:21
htmlunit vulnerability
2020-10-15 20:30:16
Code execution vulnerability in HtmlUnit
2020-05-21 21:08:33
prion
prion
Design/Logic Flaw
2020-02-11 12:15:00
ubuntucve
ubuntucve
CVE-2020-5529
2020-02-11 00:00:00
debiancve
debiancve
CVE-2020-5529
2020-02-11 12:15:00
ubuntu
ubuntu
HtmlUnit vulnerability
2020-10-15 00:00:00
nvd
nvd
CVE-2020-5529
2020-02-11 12:15:21
cve
cve
CVE-2020-5529
2020-02-11 12:15:21
redhatcve
redhatcve
CVE-2020-5529
2021-09-23 17:59:22
jvn
jvn
JVN#34535327: HtmlUnit vulenerable to arbitrary code execution
2020-02-10 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4584-1)
2020-10-16 00:00:00
Mageia: Security Advisory (MGASA-2021-0148)
2022-01-28 00:00:00
Debian: Security Advisory (DLA-2326-1)
2020-08-17 00:00:00
nessus
nessus
Debian DLA-2326-1 : htmlunit security update
2020-08-18 00:00:00
Ubuntu 16.04 LTS : HtmlUnit vulnerability (USN-4584-1)
2020-10-16 00:00:00
github
github
Code execution vulnerability in HtmlUnit
2020-05-21 21:08:33
debian
debian
[SECURITY] [DLA 2326-1] htmlunit security update
2020-08-15 15:14:50
mageia
mageia
Updated htmlunit packages fix security vulnerability
2021-03-21 13:43:43
veracode
veracode
Arbitrary Code Execution
2020-02-10 05:33:46