Oval Definition:	oval:com.ubuntu.bionic:def:2017186350000000
Revision Date: 2019-09-25 Version: 1 Title: CVE-2017-18635 on Ubuntu 18.04 LTS (bionic) - medium. Description: An XSS vulnerability was discovered in noVNC before 0.6.2 in which the remote VNC server could inject arbitrary HTML into the noVNC web page via the messages propagated to the status field, such as the VNC server name. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-18635 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND novnc package in bionic is affected and needs fixing.
BACK