Jump to:

CVE-2019-10215

Jump to:

CVE-2019-10215

Package prometheus updated to version 2.16.0-alt1 for branch sisyphus in task 248035.

Published: 2019-10-08
Modified: 2024-11-21

CVE-2019-10215

Bootstrap-3-Typeahead after version 4.0.2 is vulnerable to a cross-site scripting flaw in the highlighter() function. An attacker could exploit this via user interaction to execute code in the user's browser.

Severity: MEDIUM (6.1) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

References:

openSUSE-SU-2020:1105
openSUSE-SU-2020:1105
RHSA-2019:3771
RHSA-2019:3771
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10215
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10215

Version: 2.1.0

Package prometheus update in sisyphus on 2020-03-18

ALT-PU-2020-1512-1

Closed vulnerabilities

CVE-2019-10215