Arch Linux
Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download
issues
advisories
todo
stats
log
login
ASA-201908-22 - log
back
ASA-201908-22
created
at 25 Sep 2019 19:32:14
Workaround
Impact
+
An attacker with administrative access can execute XSS attacks on other administrators by using crafted status messages on the update center.
+
Further, an attacker is able to execute a CSRF attack under a very narrow set of constraints.