Vulnerability Description
An information disclosure vulnerability exits in Sitecore JSS React Sample Application 11.0.0 - 14.0.1 that may cause page content intended for one user to be shown to another user.
Related Weaknesses (CWE)
References
- https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB0750906
- https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1001612
- https://www.vulncheck.com/advisories/sitecore-jss-react-sample-application-info-
FAQ
What is CVE-2020-36850?
CVE-2020-36850 is a documented vulnerability. An information disclosure vulnerability exits in Sitecore JSS React Sample Application 11.0.0 - 14.0.1 that may cause page content intended for one user to be shown to another user.
How severe is CVE-2020-36850?
CVSS scoring is not yet available for CVE-2020-36850. Check NVD for updates.
Is there a patch for CVE-2020-36850?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.