Vulnerabilities > CVE-2021-20066 - Unspecified vulnerability in Jsdom Project Jsdom

CVSS 5.6 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

LOW

network

high complexity

jsdom-project

NVD

Published: 2021-02-16

Updated: 2022-10-27

Summary

JSDom improperly allows the loading of local resources, which allows for local files to be manipulated by a malicious web page when script execution is enabled.

Vulnerable Configurations

Part	Description	Count
Application	Jsdom_Project Jsdom Project Jsdom -	1

References

https://www.tenable.com/security/research/tra-2021-05
https://github.com/jsdom/jsdom/issues/3124#issuecomment-783502951