Vulnerability-Lookup

CNVD-2020-21798

Vulnerability from cnvd - Published: 2020-04-08

Title

Periscope Holdings BuySpeed跨站脚本漏洞

Description

Periscope Holdings BuySpeed是美国Periscope Holdings公司的一套采购流程管理系统。该系统包括供应商管理、采购管理、订单管理和合同管理等功能。 Periscope Holdings BuySpeed 14.5版本中存在跨站脚本漏洞。该漏洞源于WEB应用缺少对客户端数据的正确验证。攻击者可利用该漏洞执行客户端代码。

Severity

中

Formal description

厂商尚未提供漏洞修复方案，请关注厂商主页更新： https://www.periscopeholdings.com/

Reference

https://www.kb.cert.org/vuls/id/660597

Impacted products

Name
periscope holdings Periscope Holdings BuySpeed 14.5

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-9056",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2020-9056"
    }
  },
  "description": "Periscope Holdings BuySpeed\u662f\u7f8e\u56fdPeriscope Holdings\u516c\u53f8\u7684\u4e00\u5957\u91c7\u8d2d\u6d41\u7a0b\u7ba1\u7406\u7cfb\u7edf\u3002\u8be5\u7cfb\u7edf\u5305\u62ec\u4f9b\u5e94\u5546\u7ba1\u7406\u3001\u91c7\u8d2d\u7ba1\u7406\u3001\u8ba2\u5355\u7ba1\u7406\u548c\u5408\u540c\u7ba1\u7406\u7b49\u529f\u80fd\u3002\n\nPeriscope Holdings BuySpeed 14.5\u7248\u672c\u4e2d\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8eWEB\u5e94\u7528\u7f3a\u5c11\u5bf9\u5ba2\u6237\u7aef\u6570\u636e\u7684\u6b63\u786e\u9a8c\u8bc1\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u5ba2\u6237\u7aef\u4ee3\u7801\u3002",
  "formalWay": "\u5382\u5546\u5c1a\u672a\u63d0\u4f9b\u6f0f\u6d1e\u4fee\u590d\u65b9\u6848\uff0c\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u66f4\u65b0\uff1a\r\nhttps://www.periscopeholdings.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-21798",
  "openTime": "2020-04-08",
  "products": {
    "product": "periscope holdings Periscope Holdings BuySpeed 14.5"
  },
  "referenceLink": "https://www.kb.cert.org/vuls/id/660597",
  "serverity": "\u4e2d",
  "submitTime": "2020-04-07",
  "title": "Periscope Holdings BuySpeed\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e"
}

CVE-2020-9056 (GCVE-0-2020-9056)

Vulnerability from cvelistv5 – Published: 2020-04-10 18:35 – Updated: 2024-09-17 04:19

Title

Periscope BuySpeed version 14.5 is vulnerable to stored cross-site scripting

Summary

Periscope BuySpeed version 14.5 is vulnerable to stored cross-site scripting, which could allow a local, authenticated attacker to store arbitrary JavaScript within the application. This JavaScript is subsequently displayed by the application without sanitization and is executed in the browser of the user, which could possibly cause website redirection, session hijacking, or information disclosure. This vulnerability has been patched in BuySpeed version 15.3.

Severity

3.9 (Low)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

CWE

CWE-79 - Cross-site Scripting (XSS)

Assigner

certcc

References

2 references

URL	Tags
https://kb.cert.org/vuls/id/660597/	third-party-advisoryx_refsource_CERT-VN
https://support.buyspeed.com/hc/en-us/articles/36…	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
Periscope Holdings	BuySpeed	Affected: 14.5

Date Public

2019-04-12 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T10:19:19.460Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "VU#660597",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "https://kb.cert.org/vuls/id/660597/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.buyspeed.com/hc/en-us/articles/360035773831-Buyspeed-15-3-0-Release-Notes"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "BuySpeed",
          "vendor": "Periscope Holdings",
          "versions": [
            {
              "status": "affected",
              "version": "14.5"
            }
          ]
        }
      ],
      "datePublic": "2019-04-12T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Periscope BuySpeed version 14.5 is vulnerable to stored cross-site scripting, which could allow a local, authenticated attacker to store arbitrary JavaScript within the application. This JavaScript is subsequently displayed by the application without sanitization and is executed in the browser of the user, which could possibly cause website redirection, session hijacking, or information disclosure. This vulnerability has been patched in BuySpeed version 15.3."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "LOW",
            "baseScore": 3.9,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-79",
              "description": "CWE-79 Cross-site Scripting (XSS)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-04-10T18:35:23.000Z",
        "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "shortName": "certcc"
      },
      "references": [
        {
          "name": "VU#660597",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "https://kb.cert.org/vuls/id/660597/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.buyspeed.com/hc/en-us/articles/360035773831-Buyspeed-15-3-0-Release-Notes"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "value": "This vulnerability has been patched in BuySpeed version 15.3."
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Periscope BuySpeed version 14.5 is vulnerable to stored cross-site scripting",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cert@cert.org",
          "DATE_PUBLIC": "2019-04-12T00:00:00.000Z",
          "ID": "CVE-2020-9056",
          "STATE": "PUBLIC",
          "TITLE": "Periscope BuySpeed version 14.5 is vulnerable to stored cross-site scripting"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "BuySpeed",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "=",
                            "version_name": "14.5",
                            "version_value": "14.5"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Periscope Holdings"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Periscope BuySpeed version 14.5 is vulnerable to stored cross-site scripting, which could allow a local, authenticated attacker to store arbitrary JavaScript within the application. This JavaScript is subsequently displayed by the application without sanitization and is executed in the browser of the user, which could possibly cause website redirection, session hijacking, or information disclosure. This vulnerability has been patched in BuySpeed version 15.3."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "LOW",
            "baseScore": 3.9,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-79 Cross-site Scripting (XSS)"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "VU#660597",
              "refsource": "CERT-VN",
              "url": "https://kb.cert.org/vuls/id/660597/"
            },
            {
              "name": "https://support.buyspeed.com/hc/en-us/articles/360035773831-Buyspeed-15-3-0-Release-Notes",
              "refsource": "MISC",
              "url": "https://support.buyspeed.com/hc/en-us/articles/360035773831-Buyspeed-15-3-0-Release-Notes"
            }
          ]
        },
        "solution": [
          {
            "lang": "en",
            "value": "This vulnerability has been patched in BuySpeed version 15.3."
          }
        ],
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
    "assignerShortName": "certcc",
    "cveId": "CVE-2020-9056",
    "datePublished": "2020-04-10T18:35:23.402Z",
    "dateReserved": "2020-02-18T00:00:00.000Z",
    "dateUpdated": "2024-09-17T04:19:07.406Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2020-21798

CVE-2020-9056 (GCVE-0-2020-9056)

Tags

Sightings

Nomenclature