CVE-2014-1869 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	4.3 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:N/C:N/I:P/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 68%

Affected Products (NVD)

Vendor	Product	Version
redhat	openshift	𝑥 ≤ 3.1
zeroclipboard_project	zeroclipboard	𝑥 ≤ 1.3.1
zeroclipboard_project	zeroclipboard	1.0.5
zeroclipboard_project	zeroclipboard	1.0.7
zeroclipboard_project	zeroclipboard	1.0.8
zeroclipboard_project	zeroclipboard	1.1.0
zeroclipboard_project	zeroclipboard	1.1.1
zeroclipboard_project	zeroclipboard	1.1.2
zeroclipboard_project	zeroclipboard	1.1.3
zeroclipboard_project	zeroclipboard	1.1.4
zeroclipboard_project	zeroclipboard	1.1.5
zeroclipboard_project	zeroclipboard	1.1.6
zeroclipboard_project	zeroclipboard	1.1.7
zeroclipboard_project	zeroclipboard	1.2.0
zeroclipboard_project	zeroclipboard	1.2.1
zeroclipboard_project	zeroclipboard	1.2.2
zeroclipboard_project	zeroclipboard	1.2.3
zeroclipboard_project	zeroclipboard	1.3.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

db4o

bookworm	unimportant
bullseye	unimportant

Ubuntu Releases

Ubuntu Product

Codename

db4o

bionic	needs-triage
focal	needs-triage
groovy	ignored
hirsute	ignored
impish	ignored
jammy	needs-triage
kinetic	ignored
lunar	ignored
mantic	dne
noble	dne
trusty	dne
xenial	needs-triage

Common Weakness Enumeration

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

References

http://secunia.com/advisories/56821

http://www.securityfocus.com/bid/65484

https://access.redhat.com/errata/RHSA-2016:0070

https://exchange.xforce.ibmcloud.com/vulnerabilities/91085

https://github.com/zeroclipboard/zeroclipboard/commit/2f9eb9750a433965572d047e24b0fc78fd1415ca

https://github.com/zeroclipboard/zeroclipboard/pull/335

https://github.com/zeroclipboard/zeroclipboard/releases/tag/v1.3.2

https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01

http://secunia.com/advisories/56821

http://www.securityfocus.com/bid/65484

https://access.redhat.com/errata/RHSA-2016:0070

https://exchange.xforce.ibmcloud.com/vulnerabilities/91085

https://github.com/zeroclipboard/zeroclipboard/commit/2f9eb9750a433965572d047e24b0fc78fd1415ca

https://github.com/zeroclipboard/zeroclipboard/pull/335

https://github.com/zeroclipboard/zeroclipboard/releases/tag/v1.3.2

https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01