CVE-2021-4020

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2021-4020

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-4020.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-4020

Downstream

DEBIAN-CVE-2021-4020

UBUNTU-CVE-2021-4020

openSUSE-SU-2024:11675-1

Related

openSUSE-SU-2024:11675-1

Published

2021-11-27T10:15:07.453Z

Modified

2026-04-02T07:33:44.790148Z

Severity

5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

janus-gateway is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

References

Affected packages

Git / github.com/meetecho/janus-gateway

Affected ranges

Type

GIT

Repo

https://github.com/meetecho/janus-gateway

Events

Introduced

Last affected

4e560112c2005e717d7b41ce18932fe919b772c0

Fixed

d3fc00ec803d6c41d8f98908732f44e7f4911a1c

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "0.11.5"
        }
    ]
}

Affected versions

v0.*

v0.0.9

v0.1.0

v0.1.1

v0.1.2

v0.10.0

v0.10.1

v0.10.10

v0.10.2

v0.10.3

v0.10.4

v0.10.5

v0.10.6

v0.10.7

v0.10.8

v0.10.9

v0.11.1

v0.11.2

v0.11.3

v0.11.4

v0.11.5

v0.2.0

v0.2.1

v0.2.2

v0.2.3

v0.2.4

v0.2.5

v0.2.6

v0.3.0

v0.3.1

v0.4.0-broken

v0.4.1

v0.4.2

v0.4.3

v0.4.4

v0.4.5

v0.5.0

v0.6.0

v0.6.1

v0.6.2

v0.6.3

v0.7.0

v0.7.1

v0.7.2

v0.7.3

v0.7.4

v0.7.5

v0.7.6

v0.8.0

v0.8.1

v0.8.2

v0.9.0

v0.9.1

v0.9.2

v0.9.3

v0.9.4

v0.9.5

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-4020.json"