Critical severity9.0NVD Advisory· Published Nov 5, 2020· Updated Jun 17, 2026
CVE-2020-15952
CVE-2020-15952
Description
Immuta v2.8.2 is affected by stored XSS that allows a low-privileged user to escalate privileges to administrative permissions. Additionally, unauthenticated attackers can phish unauthenticated Immuta users to steal credentials or force actions on authenticated users through reflected, DOM-based XSS.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Immuta/Immutadescription
Patches
Vulnerability mechanics
References
3- labs.bishopfox.com/advisoriesnvdExploitThird Party Advisory
- labs.bishopfox.com/advisories/immuta-version-2.8.2nvdRelease NotesThird Party Advisory
- www.immuta.comnvdProduct
News mentions
0No linked articles in our index yet.