CVE-2015-5215 - OpenCVE

The default configuration of the Jinja templating engine used in the Identity Provider (IdP) server in Ipsilon 0.1.0 before 1.0.1 does not enable auto-escaping, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via template variables. NOTE: This may be a duplicate of CVE-2015-5216. Moreover, the Jinja development team does not enable auto-escape by default for performance issues as explained in https://jinja.palletsprojects.com/en/master/faq/#why-is-autoescaping-not-the-default.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Ipsilon-project	Ipsilon

Configuration 1 [-]

cpe:2.3:a:ipsilon-project:ipsilon:*:*:*:*:*:*:*:*

References

Link	Resource
http://www.openwall.com/lists/oss-security/2015/10/23/10	Mailing List Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1255168	Issue Tracking Third Party Advisory
https://fedorahosted.org/ipsilon/wiki/Releases/v1.0.1	Product
https://pagure.io/ipsilon/a503aa9c2a30a74e709d1c88099befd50fb2eb16	Patch

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2020-02-17T00:00:00

Updated: 2023-02-12T00:00:00

Reserved: 2015-07-01T00:00:00

Link: CVE-2015-5215

JSON object: View

NVD Information

Status : Modified

Published: 2020-02-17T19:15:11.617

Modified: 2024-05-17T01:05:03.100

Link: CVE-2015-5215

JSON object: View

Redhat Information

No data.

CWE

CWE-79

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ipsilon-project:ipsilon:*:*:*:*:*:*:*:*", "matchCriteriaId": "471D901F-E89E-401F-A30B-6F063F887897", "versionEndExcluding": "1.0.1", "versionStartIncluding": "0.1.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The default configuration of the Jinja templating engine used in the Identity Provider (IdP) server in Ipsilon 0.1.0 before 1.0.1 does not enable auto-escaping, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via template variables. NOTE: This may be a duplicate of CVE-2015-5216. Moreover, the Jinja development team does not enable auto-escape by default for performance issues as explained in https://jinja.palletsprojects.com/en/master/faq/#why-is-autoescaping-not-the-default."}, {"lang": "es", "value": "** EN DISPUTA ** La configuraci\u00f3n predeterminada del motor de plantillas Jinja usado en el servidor Identity Provider (IdP) en Ipsilon 0.1.0 versiones anteriores a 1.0.1, no permite el escape autom\u00e1tico, lo que facilita a atacantes remotos llevar a cabo ataques de tipo cross-site scripting (XSS) por medio de variables de plantilla. NOTA: Esto puede ser un duplicado de CVE-2015-5216. Adicionalmente, el equipo de desarrollo de Jinja no habilita el autoescape por defecto por problemas de rendimiento como se explica en https://jinja.palletsprojects.com/en/master/faq/#why-is-autoescaping-not-the-default."}], "id": "CVE-2015-5215", "lastModified": "2024-05-17T01:05:03.100", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-02-17T19:15:11.617", "references": [{"source": "secalert@redhat.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2015/10/23/10"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1255168"}, {"source": "secalert@redhat.com", "tags": ["Product"], "url": "https://fedorahosted.org/ipsilon/wiki/Releases/v1.0.1"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "https://pagure.io/ipsilon/a503aa9c2a30a74e709d1c88099befd50fb2eb16"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}