CVE-2017-20159: keynote Cross-site Scripting vulnerability
6.1
CVSS Score
3.1
Basic Information
CVE ID
GHSA ID
EPSS Score
0.38834%
CWE
Published
12/31/2022
Updated
10/20/2023
KEV Status
No
Technology
Ruby
Technical Details
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
---|---|---|---|
keynote | rubygems | < 1.0.0 | 1.0.0 |
Vulnerability Intelligence
Miggo AI
Root Cause Analysis
The commit 05be4356b0a6ca7de48da926a9b997beb5ffeb4a modifies the attrs_to_s method in rumble.rb to add quote escaping via gsub('"', '"'). The original code passed HTML-safe strings through without escaping quotes, creating XSS vectors when attributes contained unescaped quotes. The vulnerability is directly tied to this attribute serialization logic that processes user-controllable 'value' parameters.