Unrated severityNVD Advisory· Published Jan 11, 2020· Updated Aug 5, 2024
CVE-2019-20378
CVE-2019-20378
Description
ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via the header.php ce parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10- ganglia-web/ganglia-webdescription
- osv-coords8 versionspkg:rpm/opensuse/ganglia-web&distro=openSUSE%20Tumbleweedpkg:rpm/suse/ganglia-web&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/ganglia-web&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/ganglia-web&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOSpkg:rpm/suse/ganglia-web&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/ganglia-web&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/ganglia-web&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/ganglia-web&distro=SUSE%20Linux%20Enterprise%20Module%20for%20HPC%2012
< 3.7.5-2.1+ 7 more
- (no CPE)range: < 3.7.5-2.1
- (no CPE)range: < 3.7.5-150000.4.3.1
- (no CPE)range: < 3.7.5-150000.4.3.1
- (no CPE)range: < 3.7.5-150200.3.3.1
- (no CPE)range: < 3.7.5-150200.3.3.1
- (no CPE)range: < 3.7.5-150000.4.3.1
- (no CPE)range: < 3.7.5-150000.4.3.1
- (no CPE)range: < 3.7.5-3.8.1
Patches
Vulnerability mechanics
References
1- github.com/ganglia/ganglia-web/issues/351mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.