Vulnerability Details CVE-2019-14863
There is a vulnerability in all angular versions before 1.5.0-beta.0, where after escaping the context of the web application, the web application delivers data to its users along with other trusted dynamic content, without validating it.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.9%
CVSS Severity
CVSS v3 Score 7.1
CVSS v2 Score 4.3
References
Products affected by CVE-2019-14863
-
cpe:2.3:a:angularjs:angular.js:1.0.0
-
cpe:2.3:a:angularjs:angular.js:1.0.1
-
cpe:2.3:a:angularjs:angular.js:1.0.2
-
cpe:2.3:a:angularjs:angular.js:1.0.3
-
cpe:2.3:a:angularjs:angular.js:1.0.4
-
cpe:2.3:a:angularjs:angular.js:1.0.5
-
cpe:2.3:a:angularjs:angular.js:1.0.6
-
cpe:2.3:a:angularjs:angular.js:1.0.7
-
cpe:2.3:a:angularjs:angular.js:1.0.8
-
cpe:2.3:a:angularjs:angular.js:1.1.0
-
cpe:2.3:a:angularjs:angular.js:1.1.1
-
cpe:2.3:a:angularjs:angular.js:1.1.2
-
cpe:2.3:a:angularjs:angular.js:1.1.3
-
cpe:2.3:a:angularjs:angular.js:1.1.4
-
cpe:2.3:a:angularjs:angular.js:1.1.5
-
cpe:2.3:a:angularjs:angular.js:1.2.0
-
cpe:2.3:a:angularjs:angular.js:1.2.1
-
cpe:2.3:a:angularjs:angular.js:1.2.10
-
cpe:2.3:a:angularjs:angular.js:1.2.11
-
cpe:2.3:a:angularjs:angular.js:1.2.12
-
cpe:2.3:a:angularjs:angular.js:1.2.13
-
cpe:2.3:a:angularjs:angular.js:1.2.14
-
cpe:2.3:a:angularjs:angular.js:1.2.15
-
cpe:2.3:a:angularjs:angular.js:1.2.16
-
cpe:2.3:a:angularjs:angular.js:1.2.17
-
cpe:2.3:a:angularjs:angular.js:1.2.18
-
cpe:2.3:a:angularjs:angular.js:1.2.19
-
cpe:2.3:a:angularjs:angular.js:1.2.2
-
cpe:2.3:a:angularjs:angular.js:1.2.20
-
cpe:2.3:a:angularjs:angular.js:1.2.21
-
cpe:2.3:a:angularjs:angular.js:1.2.22
-
cpe:2.3:a:angularjs:angular.js:1.2.23
-
cpe:2.3:a:angularjs:angular.js:1.2.24
-
cpe:2.3:a:angularjs:angular.js:1.2.25
-
cpe:2.3:a:angularjs:angular.js:1.2.26
-
cpe:2.3:a:angularjs:angular.js:1.2.27
-
cpe:2.3:a:angularjs:angular.js:1.2.28
-
cpe:2.3:a:angularjs:angular.js:1.2.29
-
cpe:2.3:a:angularjs:angular.js:1.2.3
-
cpe:2.3:a:angularjs:angular.js:1.2.30
-
cpe:2.3:a:angularjs:angular.js:1.2.31
-
cpe:2.3:a:angularjs:angular.js:1.2.32
-
cpe:2.3:a:angularjs:angular.js:1.2.4
-
cpe:2.3:a:angularjs:angular.js:1.2.5
-
cpe:2.3:a:angularjs:angular.js:1.2.6
-
cpe:2.3:a:angularjs:angular.js:1.2.7
-
cpe:2.3:a:angularjs:angular.js:1.2.8
-
cpe:2.3:a:angularjs:angular.js:1.2.9
-
cpe:2.3:a:angularjs:angular.js:1.3.0
-
cpe:2.3:a:angularjs:angular.js:1.3.1
-
cpe:2.3:a:angularjs:angular.js:1.3.10
-
cpe:2.3:a:angularjs:angular.js:1.3.11
-
cpe:2.3:a:angularjs:angular.js:1.3.12
-
cpe:2.3:a:angularjs:angular.js:1.3.13
-
cpe:2.3:a:angularjs:angular.js:1.3.14
-
cpe:2.3:a:angularjs:angular.js:1.3.15
-
cpe:2.3:a:angularjs:angular.js:1.3.16
-
cpe:2.3:a:angularjs:angular.js:1.3.17
-
cpe:2.3:a:angularjs:angular.js:1.3.18
-
cpe:2.3:a:angularjs:angular.js:1.3.19
-
cpe:2.3:a:angularjs:angular.js:1.3.2
-
cpe:2.3:a:angularjs:angular.js:1.3.20
-
cpe:2.3:a:angularjs:angular.js:1.3.3
-
cpe:2.3:a:angularjs:angular.js:1.3.4
-
cpe:2.3:a:angularjs:angular.js:1.3.5
-
cpe:2.3:a:angularjs:angular.js:1.3.6
-
cpe:2.3:a:angularjs:angular.js:1.3.7
-
cpe:2.3:a:angularjs:angular.js:1.3.8
-
cpe:2.3:a:angularjs:angular.js:1.3.9
-
cpe:2.3:a:angularjs:angular.js:1.4.0
-
cpe:2.3:a:angularjs:angular.js:1.4.1
-
cpe:2.3:a:angularjs:angular.js:1.4.10
-
cpe:2.3:a:angularjs:angular.js:1.4.11
-
cpe:2.3:a:angularjs:angular.js:1.4.12
-
cpe:2.3:a:angularjs:angular.js:1.4.13
-
cpe:2.3:a:angularjs:angular.js:1.4.14
-
cpe:2.3:a:angularjs:angular.js:1.4.2
-
cpe:2.3:a:angularjs:angular.js:1.4.3
-
cpe:2.3:a:angularjs:angular.js:1.4.4
-
cpe:2.3:a:angularjs:angular.js:1.4.5
-
cpe:2.3:a:angularjs:angular.js:1.4.6
-
cpe:2.3:a:angularjs:angular.js:1.4.7
-
cpe:2.3:a:angularjs:angular.js:1.4.8
-
cpe:2.3:a:angularjs:angular.js:1.4.9
-
cpe:2.3:a:redhat:decision_manager:7.0
-
cpe:2.3:a:redhat:process_automation:7.0