VDB
DEBIAN-CVE-2019-14862
DEBIAN-CVE-2019-14862
PUBLISHED
CVSS 6.099999904632568 MEDIUM
There is a vulnerability in knockout before version 3.5.0-beta, where after escaping the context of the web application, the web application delivers data to its users along with other trusted dynamic content, without validating it.
Risk Scores
CVSS v3.1
6.099999904632568
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | node-knockout | 0, 0, 0 |
| Debian:11 | node-knockout | 0, 0, 0 |
| Debian:13 | node-knockout | 0, 0, 0 |
| Debian:14 | node-knockout | 0, 0, 0 |
Timeline
- Jan 2, 2020 CVE Published
- Apr 28, 2026 CVE Updated