CVE-2021-23472 - OpenCVE

This affects versions before 1.19.1 of package bootstrap-table. A type confusion vulnerability can lead to a bypass of input sanitization when the input provided to the escapeHTML function is an array (instead of a string) even if the escape attribute is set.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Bootstrap-table	Bootstrap Table

Configuration 1 [-]

cpe:2.3:a:bootstrap-table:bootstrap_table:*:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/wenzhixin/bootstrap-table/blob/develop/src/utils/index.js%23L218	Broken Link Third Party Advisory
https://security.snyk.io/vuln/SNYK-JS-BOOTSTRAPTABLE-1657597	Exploit Patch Third Party Advisory
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-1910690	Exploit Mitigation Third Party Advisory VDB Entry
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1910689	Exploit Mitigation Third Party Advisory VDB Entry
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBWENZHIXIN-1910687	Exploit Mitigation Third Party Advisory VDB Entry
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1910688	Exploit Mitigation Third Party Advisory VDB Entry
https://snyk.io/vuln/SNYK-JS-BOOTSTRAPTABLE-1657597	Exploit Mitigation Third Party Advisory VDB Entry

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: snyk

Published: 2021-11-03T00:00:00

Updated: 2021-11-19T17:34:34

Reserved: 2021-01-08T00:00:00

Link: CVE-2021-23472

JSON object: View

NVD Information

Status : Analyzed

Published: 2021-11-03T18:15:08.010

Modified: 2023-01-23T17:14:07.267

Link: CVE-2021-23472

JSON object: View

Redhat Information

No data.

CWE

CWE-843

{"containers": {"cna": {"affected": [{"product": "bootstrap-table", "vendor": "n/a", "versions": [{"status": "affected", "version": "<1.19.1"}]}], "credits": [{"lang": "en", "value": "Alessio Della Libera of Snyk Research Team"}], "datePublic": "2021-11-03T00:00:00", "descriptions": [{"lang": "en", "value": "This affects versions before 1.19.1 of package bootstrap-table. A type confusion vulnerability can lead to a bypass of input sanitization when the input provided to the escapeHTML function is an array (instead of a string) even if the escape attribute is set."}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 3.1, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"description": "Cross-site Scripting (XSS)", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-11-19T17:34:34", "orgId": "bae035ff-b466-4ff4-94d0-fc9efd9e1730", "shortName": "snyk"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://snyk.io/vuln/SNYK-JS-BOOTSTRAPTABLE-1657597"}, {"tags": ["x_refsource_MISC"], "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBWENZHIXIN-1910687"}, {"tags": ["x_refsource_MISC"], "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1910688"}, {"tags": ["x_refsource_MISC"], "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1910689"}, {"tags": ["x_refsource_MISC"], "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-1910690"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/wenzhixin/bootstrap-table/blob/develop/src/utils/index.js%23L218"}, {"tags": ["x_refsource_MISC"], "url": "https://security.snyk.io/vuln/SNYK-JS-BOOTSTRAPTABLE-1657597"}], "title": "Cross-site Scripting (XSS)", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "report@snyk.io", "DATE_PUBLIC": "2021-11-03T17:21:09.920923Z", "ID": "CVE-2021-23472", "STATE": "PUBLIC", "TITLE": "Cross-site Scripting (XSS)"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "bootstrap-table", "version": {"version_data": [{"version_value": "<1.19.1"}]}}]}, "vendor_name": "n/a"}]}}, "credit": [{"lang": "eng", "value": "Alessio Della Libera of Snyk Research Team"}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "This affects versions before 1.19.1 of package bootstrap-table. A type confusion vulnerability can lead to a bypass of input sanitization when the input provided to the escapeHTML function is an array (instead of a string) even if the escape attribute is set."}]}, "impact": {"cvss": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 3.1, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Cross-site Scripting (XSS)"}]}]}, "references": {"reference_data": [{"name": "https://snyk.io/vuln/SNYK-JS-BOOTSTRAPTABLE-1657597", "refsource": "MISC", "url": "https://snyk.io/vuln/SNYK-JS-BOOTSTRAPTABLE-1657597"}, {"name": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBWENZHIXIN-1910687", "refsource": "MISC", "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBWENZHIXIN-1910687"}, {"name": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1910688", "refsource": "MISC", "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1910688"}, {"name": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1910689", "refsource": "MISC", "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1910689"}, {"name": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-1910690", "refsource": "MISC", "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-1910690"}, {"name": "https://github.com/wenzhixin/bootstrap-table/blob/develop/src/utils/index.js%23L218", "refsource": "MISC", "url": "https://github.com/wenzhixin/bootstrap-table/blob/develop/src/utils/index.js%23L218"}, {"name": "https://security.snyk.io/vuln/SNYK-JS-BOOTSTRAPTABLE-1657597", "refsource": "MISC", "url": "https://security.snyk.io/vuln/SNYK-JS-BOOTSTRAPTABLE-1657597"}]}}}}, "cveMetadata": {"assignerOrgId": "bae035ff-b466-4ff4-94d0-fc9efd9e1730", "assignerShortName": "snyk", "cveId": "CVE-2021-23472", "datePublished": "2021-11-03T00:00:00", "dateReserved": "2021-01-08T00:00:00", "dateUpdated": "2021-11-19T17:34:34", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:bootstrap-table:bootstrap_table:*:*:*:*:*:*:*:*", "matchCriteriaId": "DCBC3F49-4182-477A-80BF-64651C57320D", "versionEndExcluding": "1.19.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "This affects versions before 1.19.1 of package bootstrap-table. A type confusion vulnerability can lead to a bypass of input sanitization when the input provided to the escapeHTML function is an array (instead of a string) even if the escape attribute is set."}, {"lang": "es", "value": "Esto afecta a las versiones anteriores a la 1.19.1 del paquete bootstrap-table. Una vulnerabilidad de confusi\u00f3n de tipos puede llevar a una evasi\u00f3n de la sanitizaci\u00f3n de la entrada cuando la entrada proporcionada a la funci\u00f3n escapeHTML es un array (en lugar de una cadena) incluso si el atributo escape est\u00e1 establecido"}], "id": "CVE-2021-23472", "lastModified": "2023-01-23T17:14:07.267", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 3.1, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.6, "impactScore": 1.4, "source": "report@snyk.io", "type": "Secondary"}]}, "published": "2021-11-03T18:15:08.010", "references": [{"source": "report@snyk.io", "tags": ["Broken Link", "Third Party Advisory"], "url": "https://github.com/wenzhixin/bootstrap-table/blob/develop/src/utils/index.js%23L218"}, {"source": "report@snyk.io", "tags": ["Exploit", "Patch", "Third Party Advisory"], "url": "https://security.snyk.io/vuln/SNYK-JS-BOOTSTRAPTABLE-1657597"}, {"source": "report@snyk.io", "tags": ["Exploit", "Mitigation", "Third Party Advisory", "VDB Entry"], "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-1910690"}, {"source": "report@snyk.io", "tags": ["Exploit", "Mitigation", "Third Party Advisory", "VDB Entry"], "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1910689"}, {"source": "report@snyk.io", "tags": ["Exploit", "Mitigation", "Third Party Advisory", "VDB Entry"], "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBWENZHIXIN-1910687"}, {"source": "report@snyk.io", "tags": ["Exploit", "Mitigation", "Third Party Advisory", "VDB Entry"], "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1910688"}, {"source": "report@snyk.io", "tags": ["Exploit", "Mitigation", "Third Party Advisory", "VDB Entry"], "url": "https://snyk.io/vuln/SNYK-JS-BOOTSTRAPTABLE-1657597"}], "sourceIdentifier": "report@snyk.io", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-843"}], "source": "nvd@nist.gov", "type": "Primary"}]}