CVE-2020-14492: OpenClinic GA
First published: Wed Jul 29 2020(Updated: )
OpenClinic GA 5.09.02 and 5.89.05b does not properly neutralize user-controllable input, which may allow the execution of malicious code within the user’s browser.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Openclinic Ga Project Openclinic Ga | =5.09.02 | |
| Openclinic Ga Project Openclinic Ga | =5.89.05b |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this security issue?
The vulnerability ID for this security issue is CVE-2020-14492.
What is the severity of CVE-2020-14492?
The severity of CVE-2020-14492 is medium with a CVSS score of 6.1.
What is the affected software version of OpenClinic GA?
OpenClinic GA version 5.09.02 and 5.89.05b are affected by this vulnerability.
What is the CWE ID associated with CVE-2020-14492?
The CWE ID associated with CVE-2020-14492 is CWE-79.
How can I fix this vulnerability in OpenClinic GA?
To fix this vulnerability in OpenClinic GA, it is recommended to update to a patched version of the software provided by the OpenClinic GA Project.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/title
- agent/tags
- agent/references
- agent/severity
- agent/first-publish-date
- agent/event
- agent/description
- vendor/openclinic ga project
- canonical/openclinic ga project openclinic ga
- version/openclinic ga project openclinic ga/5.09.02
- version/openclinic ga project openclinic ga/5.89.05b