CVE-2021-20066

CVE-2021-20066

EPSS 1.4%

JSDom improperly allows the loading of local resources, which allows for local files to be manipulated by a malicious web page when script execution is enabled.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/jsdom/jsdom/issues/3124#issuecomment-783502951 https://www.tenable.com/security/research/tra-2021-05