CVE-2020-23064

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2020-23064
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-11023. Reason: This candidate is a duplicate of CVE-2020-11023. Notes: All CVE users should reference CVE-2020-11023 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

15 May 2024, 17:15

Type Values Removed Values Added
References
  • {'url': 'https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/', 'tags': ['Release Notes'], 'source': 'cve@mitre.org'}
  • {'url': 'https://security.netapp.com/advisory/ntap-20230725-0003/', 'tags': ['Third Party Advisory'], 'source': 'cve@mitre.org'}
  • {'url': 'https://snyk.io/vuln/SNYK-JS-JQUERY-565129', 'tags': ['Third Party Advisory'], 'source': 'cve@mitre.org'}
CVSS v2 : unknown
v3 : 6.1 		v2 : unknown
v3 : unknown
CWE CWE-79
Summary (en) Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element. (en) Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-11023. Reason: This candidate is a duplicate of CVE-2020-11023. Notes: All CVE users should reference CVE-2020-11023 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
CPE cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:linux:*:*
cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*
cpe:2.3:a:netapp:management_services_for_element_software_and_netapp_hci:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:virtual_desktop_service:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:brocade_san_navigator:-:*:*:*:*:*:*:*

01 Apr 2024, 15:43

Type Values Removed Values Added
CPE cpe:2.3:a:netapp:management_services_for_element_software_and_netapp_hci:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:linux:*:*
cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:virtual_desktop_service:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:brocade_san_navigator:-:*:*:*:*:*:*:*
First Time Netapp brocade San Navigator
Netapp
Netapp cloud Backup
Netapp virtual Desktop Service
Netapp active Iq Unified Manager
Netapp management Services For Element Software And Netapp Hci
References (CONFIRM) https://security.netapp.com/advisory/ntap-20230725-0003/ - (CONFIRM) https://security.netapp.com/advisory/ntap-20230725-0003/ - Third Party Advisory

25 Jul 2023, 15:15

Type Values Removed Values Added
References
  • (CONFIRM) https://security.netapp.com/advisory/ntap-20230725-0003/ -

04 Jul 2023, 01:38

Type Values Removed Values Added
CPE cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*
References (MISC) https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/ - (MISC) https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/ - Release Notes
References (MISC) https://snyk.io/vuln/SNYK-JS-JQUERY-565129 - (MISC) https://snyk.io/vuln/SNYK-JS-JQUERY-565129 - Third Party Advisory
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 6.1
CWE CWE-79
First Time Jquery jquery
Jquery

27 Jun 2023, 13:15

Type Values Removed Values Added
Summary Cross Site Scripting vulnerability in jQuery v.2.2.0 thru v.3.5.0 allows a remote attacker to execute arbitrary code via the <options> element. Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element.

26 Jun 2023, 19:15

Type Values Removed Values Added
New CVE
Information

Published : 2023-06-26 19:15

Updated : 2024-05-15 17:15

NVD link : CVE-2020-23064

Mitre link : CVE-2020-23064

CVE.ORG link : CVE-2020-23064

JSON object : View

Products Affected

No product.

CWE

No CWE.