CVE-2020-7676

2020-06-1920:29:14

redhat.com

access.redhat.com

154

0.002 Low

EPSS

Percentile

51.9%

JSON

A XSS flaw was found in nodejs-angular. The regex-based input HTML replacement may turn sanitized code into unsanitized one. Wrapping "" elements in "" ones changes parsing behavior, leading to possibly unsanitizing code.

References

bugzilla.redhat.com/show_bug.cgi?id=1849206

nvd.nist.gov/vuln/detail/CVE-2020-7676

snyk.io/vuln/SNYK-JS-ANGULAR-570058

www.cve.org/CVERecord?id=CVE-2020-7676

0.002 Low

EPSS

Percentile

51.9%

JSON

Related for RH:CVE-2020-7676