{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2015-5215", "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "dateUpdated": "2024-08-06T06:41:08.412Z", "dateReserved": "2015-07-01T00:00:00", "datePublished": "2020-02-17T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2023-02-12T00:00:00"}, "descriptions": [{"lang": "en", "value": "The default configuration of the Jinja templating engine used in the Identity Provider (IdP) server in Ipsilon 0.1.0 before 1.0.1 does not enable auto-escaping, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via template variables. NOTE: This may be a duplicate of CVE-2015-5216. Moreover, the Jinja development team does not enable auto-escape by default for performance issues as explained in https://jinja.palletsprojects.com/en/master/faq/#why-is-autoescaping-not-the-default."}], "tags": ["disputed"], "affected": [{"vendor": "n/a", "product": "Ipsilon", "versions": [{"version": "0.1.0 before 1.0.1", "status": "affected"}]}], "references": [{"url": "https://pagure.io/ipsilon/a503aa9c2a30a74e709d1c88099befd50fb2eb16"}, {"url": "https://fedorahosted.org/ipsilon/wiki/Releases/v1.0.1"}, {"url": "http://www.openwall.com/lists/oss-security/2015/10/23/10"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1255168"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "Cross-Site Scripting"}]}], "datePublic": "2015-10-23T00:00:00"}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T06:41:08.412Z"}, "title": "CVE Program Container", "references": [{"url": "https://pagure.io/ipsilon/a503aa9c2a30a74e709d1c88099befd50fb2eb16", "tags": ["x_transferred"]}, {"url": "https://fedorahosted.org/ipsilon/wiki/Releases/v1.0.1", "tags": ["x_transferred"]}, {"url": "http://www.openwall.com/lists/oss-security/2015/10/23/10", "tags": ["x_transferred"]}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1255168", "tags": ["x_transferred"]}]}]}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ipsilon-project:ipsilon:*:*:*:*:*:*:*:*", "matchCriteriaId": "471D901F-E89E-401F-A30B-6F063F887897", "versionEndExcluding": "1.0.1", "versionStartIncluding": "0.1.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [{"sourceIdentifier": "secalert@redhat.com", "tags": ["disputed"]}], "descriptions": [{"lang": "en", "value": "The default configuration of the Jinja templating engine used in the Identity Provider (IdP) server in Ipsilon 0.1.0 before 1.0.1 does not enable auto-escaping, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via template variables. NOTE: This may be a duplicate of CVE-2015-5216. Moreover, the Jinja development team does not enable auto-escape by default for performance issues as explained in https://jinja.palletsprojects.com/en/master/faq/#why-is-autoescaping-not-the-default."}, {"lang": "es", "value": "** EN DISPUTA ** La configuraci\u00f3n predeterminada del motor de plantillas Jinja usado en el servidor Identity Provider (IdP) en Ipsilon 0.1.0 versiones anteriores a 1.0.1, no permite el escape autom\u00e1tico, lo que facilita a atacantes remotos llevar a cabo ataques de tipo cross-site scripting (XSS) por medio de variables de plantilla. NOTA: Esto puede ser un duplicado de CVE-2015-5216. Adicionalmente, el equipo de desarrollo de Jinja no habilita el autoescape por defecto por problemas de rendimiento como se explica en https://jinja.palletsprojects.com/en/master/faq/#why-is-autoescaping-not-the-default."}], "id": "CVE-2015-5215", "lastModified": "2024-11-21T02:32:34.533", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-02-17T19:15:11.617", "references": [{"source": "secalert@redhat.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2015/10/23/10"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1255168"}, {"source": "secalert@redhat.com", "tags": ["Product"], "url": "https://fedorahosted.org/ipsilon/wiki/Releases/v1.0.1"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "https://pagure.io/ipsilon/a503aa9c2a30a74e709d1c88099befd50fb2eb16"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2015/10/23/10"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1255168"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Product"], "url": "https://fedorahosted.org/ipsilon/wiki/Releases/v1.0.1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://pagure.io/ipsilon/a503aa9c2a30a74e709d1c88099befd50fb2eb16"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"acknowledgement": "This issue was discovered by Michael Scherer (Red Hat).", "bugzilla": {"description": "ipsilon: XSS in multiple pages", "id": "1255168", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1255168"}, "csaw": false, "cvss": {"cvss_base_score": "4.3", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "status": "draft"}, "cwe": "CWE-79", "details": ["The default configuration of the Jinja templating engine used in the Identity Provider (IdP) server in Ipsilon 0.1.0 before 1.0.1 does not enable auto-escaping, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via template variables. NOTE: This may be a duplicate of CVE-2015-5216. Moreover, the Jinja development team does not enable auto-escape by default for performance issues as explained in https://jinja.palletsprojects.com/en/master/faq/#why-is-autoescaping-not-the-default.", "It was found that the Ipsilon IdP server used the default configuration of the Jinja templating engine, which did not HTML escape template variables. This could be exploited to perform an XSS attack if a value from untrusted input was used in the template and rendered in the user`s browser."], "name": "CVE-2015-5215", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Affected", "package_name": "ipsilon", "product_name": "Red Hat Enterprise Linux 7"}], "public_date": "2015-08-19T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2015-5215\nhttps://nvd.nist.gov/vuln/detail/CVE-2015-5215"], "threat_severity": "Moderate"}