| Vulnerability Name: | CVE-2020-35475 (CCN-193551) | ||||||||||||
| Assigned: | 2020-12-17 | ||||||||||||
| Published: | 2020-12-17 | ||||||||||||
| Updated: | 2022-04-08 | ||||||||||||
| Summary: | In MediaWiki before 1.35.1, the messages userrights-expiry-current and userrights-expiry-none can contain raw HTML. XSS can happen when a user visits Special:UserRights but does not have rights to change all userrights, and the table on the left side has unchangeable groups in it. (The right column with the changeable groups is not affected and is escaped correctly.) | ||||||||||||
| CVSS v3 Severity: | 7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N) 7.2 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:H/RL:O/RC:C)
5.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)
| ||||||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
| ||||||||||||
| Vulnerability Type: | CWE-79 | ||||||||||||
| Vulnerability Consequences: | Cross-Site Scripting | ||||||||||||
| References: | Source: MITRE Type: CNA CVE-2020-35475 Source: XF Type: UNKNOWN mediawiki-cve202035475-xss(193551) Source: FEDORA Type: Mailing List, Third Party Advisory FEDORA-2020-0be2d40e13 Source: CCN Type: MediaWiki Mailing List, Thu Dec 17 23:16:51 UTC 2020 Security and maintenance release: 1.31.11 / 1.35.1 Source: MISC Type: Mailing List, Release Notes, Vendor Advisory https://lists.wikimedia.org/pipermail/mediawiki-announce/2020-December/000268.html Source: MISC Type: Issue Tracking, Third Party Advisory https://phabricator.wikimedia.org/T268917 Source: DEBIAN Type: Third Party Advisory DSA-4816 | ||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration 3: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||
| BACK | |||||||||||||