CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-14862

There is a vulnerability in knockout before version 3.5.0-beta, where after escaping the context of the web application, the web application delivers data to its users along with other trusted dynamic content, without validating it.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.8%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

Products affected by CVE-2019-14862

Knockoutjs » Knockout » Version: N/A

cpe:2.3:a:knockoutjs:knockout:-
Knockoutjs » Knockout » Version: 1.0.0

cpe:2.3:a:knockoutjs:knockout:1.0.0
Knockoutjs » Knockout » Version: 1.0.1

cpe:2.3:a:knockoutjs:knockout:1.0.1
Knockoutjs » Knockout » Version: 1.0.2

cpe:2.3:a:knockoutjs:knockout:1.0.2
Knockoutjs » Knockout » Version: 1.0.3

cpe:2.3:a:knockoutjs:knockout:1.0.3
Knockoutjs » Knockout » Version: 1.0.4

cpe:2.3:a:knockoutjs:knockout:1.0.4
Knockoutjs » Knockout » Version: 1.0.5

cpe:2.3:a:knockoutjs:knockout:1.0.5
Knockoutjs » Knockout » Version: 1.1.0

cpe:2.3:a:knockoutjs:knockout:1.1.0
Knockoutjs » Knockout » Version: 1.1.1

cpe:2.3:a:knockoutjs:knockout:1.1.1
Knockoutjs » Knockout » Version: 1.1.2

cpe:2.3:a:knockoutjs:knockout:1.1.2
Knockoutjs » Knockout » Version: 1.2.0

cpe:2.3:a:knockoutjs:knockout:1.2.0
Knockoutjs » Knockout » Version: 1.2.1

cpe:2.3:a:knockoutjs:knockout:1.2.1
Knockoutjs » Knockout » Version: 1.3.0

cpe:2.3:a:knockoutjs:knockout:1.3.0
Knockoutjs » Knockout » Version: 2.0.0

cpe:2.3:a:knockoutjs:knockout:2.0.0
Knockoutjs » Knockout » Version: 2.1.0

cpe:2.3:a:knockoutjs:knockout:2.1.0
Knockoutjs » Knockout » Version: 2.2.0

cpe:2.3:a:knockoutjs:knockout:2.2.0
Knockoutjs » Knockout » Version: 2.2.1

cpe:2.3:a:knockoutjs:knockout:2.2.1
Knockoutjs » Knockout » Version: 2.3.0

cpe:2.3:a:knockoutjs:knockout:2.3.0
Knockoutjs » Knockout » Version: 3.0.0

cpe:2.3:a:knockoutjs:knockout:3.0.0
Knockoutjs » Knockout » Version: 3.1.0

cpe:2.3:a:knockoutjs:knockout:3.1.0
Knockoutjs » Knockout » Version: 3.2.0

cpe:2.3:a:knockoutjs:knockout:3.2.0
Knockoutjs » Knockout » Version: 3.3.0

cpe:2.3:a:knockoutjs:knockout:3.3.0
Knockoutjs » Knockout » Version: 3.4.0

cpe:2.3:a:knockoutjs:knockout:3.4.0
Knockoutjs » Knockout » Version: 3.4.1

cpe:2.3:a:knockoutjs:knockout:3.4.1
Knockoutjs » Knockout » Version: 3.4.2

cpe:2.3:a:knockoutjs:knockout:3.4.2
Oracle » Business Intelligence » Version: 12.2.1.3.0

cpe:2.3:a:oracle:business_intelligence:12.2.1.3.0
Oracle » Business Intelligence » Version: 12.2.1.4.0

cpe:2.3:a:oracle:business_intelligence:12.2.1.4.0
Oracle » Business Intelligence » Version: 5.5.0.0.0

cpe:2.3:a:oracle:business_intelligence:5.5.0.0.0
Oracle » Goldengate » Version: 12.3.0.1.2

cpe:2.3:a:oracle:goldengate:12.3.0.1.2
Redhat » Decision Manager » Version: 7.0

cpe:2.3:a:redhat:decision_manager:7.0
Redhat » Process Automation » Version: 7.0

cpe:2.3:a:redhat:process_automation:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-14862

Products

Pricing

Contact Us