CVE-2020-13959 — MEDIUM (6.1)

Q: How severe is CVE-2020-13959?

CVE-2020-13959 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2020-13959?

Check the references section above for vendor advisories and patch information. Affected products include: Apache Velocity Tools, Debian Debian Linux.

Vulnerability Description

The default error page for VelocityView in Apache Velocity Tools prior to 3.1 reflects back the vm file that was entered as part of the URL. An attacker can set an XSS payload file as this vm file in the URL which results in this payload being executed. XSS vulnerabilities allow attackers to execute arbitrary JavaScript in the context of the attacked website and the attacked user. This can be abused to steal session cookies, perform requests in the name of the victim or for phishing attacks.

CVSS Score

6.1

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Apache	Velocity Tools	< 3.1
Debian	Debian Linux	9.0

Related Weaknesses (CWE)

CWE-79

References

http://www.openwall.com/lists/oss-security/2021/03/10/2Mailing ListThird Party Advisory
https://lists.apache.org/thread.html/r6802a38c3041059e763a1aadd7b37fe95de7540814Mailing ListVendor Advisory
https://lists.apache.org/thread.html/r6802a38c3041059e763a1aadd7b37fe95de7540814Mailing ListVendor Advisory
https://lists.apache.org/thread.html/r97edad0655770342d2d36620fb1de50b142fcd6c4f
https://lists.apache.org/thread.html/rb042f3b0090e419cc9f5a3d32cf0baff283ccd6fcb
https://lists.apache.org/thread.html/rf9868c564cff7adfd5283563f2309b93b3e496354a
https://lists.debian.org/debian-lts-announce/2021/03/msg00021.htmlMailing ListThird Party Advisory
https://security.gentoo.org/glsa/202107-52Third Party Advisory
http://www.openwall.com/lists/oss-security/2021/03/10/2Mailing ListThird Party Advisory
https://lists.apache.org/thread.html/r6802a38c3041059e763a1aadd7b37fe95de7540814Mailing ListVendor Advisory
https://lists.apache.org/thread.html/r6802a38c3041059e763a1aadd7b37fe95de7540814Mailing ListVendor Advisory
https://lists.apache.org/thread.html/r97edad0655770342d2d36620fb1de50b142fcd6c4f
https://lists.apache.org/thread.html/rb042f3b0090e419cc9f5a3d32cf0baff283ccd6fcb
https://lists.apache.org/thread.html/rf9868c564cff7adfd5283563f2309b93b3e496354a
https://lists.debian.org/debian-lts-announce/2021/03/msg00021.htmlMailing ListThird Party Advisory

FAQ

What is CVE-2020-13959?

CVE-2020-13959 is a vulnerability with a CVSS score of 6.1 (MEDIUM). The default error page for VelocityView in Apache Velocity Tools prior to 3.1 reflects back the vm file that was entered as part of the URL. An attacker can set an XSS payload file as this vm file in ...

How severe is CVE-2020-13959?

CVE-2020-13959 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-13959?

Check the references section above for vendor advisories and patch information. Affected products include: Apache Velocity Tools, Debian Debian Linux.