Vulnerability Details CVE-2020-5219
Angular Expressions before version 1.0.1 has a remote code execution vulnerability if you call expressions.compile(userControlledInput) where userControlledInput is text that comes from user input. If running angular-expressions in the browser, an attacker could run any browser script when the application code calls expressions.compile(userControlledInput). If running angular-expressions on the server, an attacker could run any Javascript expression, thus gaining Remote Code Execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.4%
CVSS Severity
CVSS v3 Score 8.7
CVSS v2 Score 6.8
References
- http://blog.angularjs.org/2016/09/angular-16-expression-sandbox-removal.html
- https://github.com/peerigon/angular-expressions/commit/061addfb9a9e932a970e5fcb913d020038e65667
- https://github.com/peerigon/angular-expressions/security/advisories/GHSA-hxhm-96pp-2m43
- http://blog.angularjs.org/2016/09/angular-16-expression-sandbox-removal.html
- https://github.com/peerigon/angular-expressions/commit/061addfb9a9e932a970e5fcb913d020038e65667
- https://github.com/peerigon/angular-expressions/security/advisories/GHSA-hxhm-96pp-2m43
Products affected by CVE-2020-5219
-
cpe:2.3:a:peerigon:angular-expressions:0.1.0
-
cpe:2.3:a:peerigon:angular-expressions:0.2.0
-
cpe:2.3:a:peerigon:angular-expressions:0.2.1
-
cpe:2.3:a:peerigon:angular-expressions:0.3.0
-
cpe:2.3:a:peerigon:angular-expressions:1.0.0