ASA-201910-4 - log back

ASA-201910-4 edited at 03 Oct 2019 19:19:55
ASA-201910-4 edited at 02 Oct 2019 12:56:17
Impact
+ An attacker is able to perform cross-side scripting attacks by tricking users to generate documentation with a vulnerable RDoc version. RDoc is a static documentation generation tool, patching the tool itself is insufficient to mitigate these vulnerabilities. Documentations generated with previous versions have to be re-generated with newer RDoc.
- An attacker is able to perform cross-side scripting attacks by tricking users to generate documentation with a vulnerable rdoc version.
-
- RDoc is a static documentation generation tool, patching the tool itself is insufficient to mitigate these vulnerabilities. Documentations generated with previous versions have to be re-generated with newer RDoc.
ASA-201910-4 edited at 02 Oct 2019 12:55:22
Impact
An attacker is able to perform cross-side scripting attacks by tricking users to generate documentation with a vulnerable rdoc version.
+
RDoc is a static documentation generation tool, patching the tool itself is insufficient to mitigate these vulnerabilities. Documentations generated with previous versions have to be re-generated with newer RDoc.
ASA-201910-4 edited at 02 Oct 2019 12:55:12
Impact
+ An attacker is able to perform cross-side scripting attacks by tricking users to generate documentation with a vulnerable rdoc version.
+ RDoc is a static documentation generation tool, patching the tool itself is insufficient to mitigate these vulnerabilities. Documentations generated with previous versions have to be re-generated with newer RDoc.
ASA-201910-4 created at 02 Oct 2019 12:53:14