Loading...

XML

Word

Printable

Type: Public Security Vulnerability
Resolution: Fixed
Priority: Low
Fix Version/s: 4.8.9
Affects Version/s: 4.8.8
Component/s: None
Labels:

CVSS Score:
6.1
CVSS Severity:
Medium
CVE ID:
CVE-2021-43956

The jQuery deserialize library in Fisheye and Crucible before version 4.8.9 allowed remote attackers to to inject arbitrary HTML and/or JavaScript via a prototype pollution vulnerability.

Affected versions:

version < 4.8.9

Fixed versions:

4.8.9

is related to

CRUC-8531 CVE-2021-43956: Javascript Prototype Pollution in the jQuery deserialize library

Published

Assignee:: Unassigned

Reporter:: Security Metrics Bot

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Created:: 07/Mar/2022 8:15 AM

Updated:: 09/Nov/2023 9:44 AM

Resolved:: 14/Mar/2022 4:39 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates