CVE-2017-5246 Information

Feb 14, 2021 cve

Description

Biscom Secure File Transfer is vulnerable to AngularJS expression injection in the Display Name field. An authenticated user can populate this field with a valid AngularJS expression wrapped in double curly-braces ( ). This expression will be evaluated by any other authenticated user who views the attacker’s display name. Affected versions are 5.0.0000 through 5.1.1026. The Issue is fixed in 5.1.1028.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Reference

https://cve.biscom.com/bis-sft-cv-0004/ https://twitter.com/i_bo0om/status/885050741567750145 Biscom Secure File Transfer is vulnerable to AngularJS expression injection in the Display Name field. An authenticated user can populate this field with a valid AngularJS expression wrapped in double curly-braces ( ). This expression will be evaluated by any other authenticated user who views the attacker’s display name. Affected versions are 5.0.0000 through 5.1.1026. The Issue is fixed in 5.1.1028.

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

LOW

Base Score

NONE

Base Severity

4.3

Share on: