8.8

CVSS Score

3.1

Basic Information

CVE ID

CVE-2021-21028

GHSA ID

GHSA-f92j-qf46-p6vm

EPSS Score

0.9523%

CWE

CWE-79

Published

2/2/2021

Updated

2/1/2023

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2021-21028

CVE-2021-21028:
Reflected Cross-site Scripting in ACS Commons

Impact

ACS Commons version 4.9.2 (and earlier) suffers from a Reflected Cross-site Scripting (XSS) vulnerability in version-compare and page-compare due to invalid JCR characters that are not handled correctly.

An attacker could potentially exploit this vulnerability to inject malicious JavaScript content into vulnerable form fields and execute it within the context of the victim's browser. Exploitation of this issue requires user interaction in order to be successful.

Patches

This issue has been resolved in v4.10.0

Workarounds

No workaround exist.

References

N/A

For more information

If you have any questions or comments about this advisory open an issue in acs-aem-commons.

Credit

This issue was discovered and reported by Christopher Whipp (Christopher.Whipp@servicesaustralia.gov.au).

(GitHub Advisory)

8.8

CVSS Score

3.1

Basic Information

CVE ID

CVE-2021-21028

GHSA ID

GHSA-f92j-qf46-p6vm

EPSS Score

0.9523%

CWE

CWE-79

Published

2/2/2021

Updated

2/1/2023

KEV Status

Technology

Java

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
com.adobe.acs:acs-aem-commons	maven	< 4.10.0	4.10.0

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The commit diff shows the vulnerability was patched by adding XSS encoding via xss:encodeForJSString to these JSP files' ng-init directives. Before patching, user-controlled JCR paths were directly interpolated into JavaScript contexts without proper sanitization, making these template rendering points vulnerable to reflected XSS through malicious path parameters.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

### Imp**t **S *ommons v*rsion *.*.* (*n* **rli*r) su***rs *rom * R**l**t** *ross-sit* S*riptin* (XSS) vuln*r**ility in v*rsion-*omp*r* *n* p***-*omp*r* *u* to inv*li* J*R ***r**t*rs t**t *r* not **n*l** *orr**tly. *n *tt**k*r *oul* pot*nti*lly *xp

Reasoning

T** *ommit *i** s*ows t** vuln*r**ility w*s p*t**** *y ***in* XSS *n*o*in* vi* `xss:*n*o***orJSStrin*` to t**s* JSP *il*s' n*-init *ir**tiv*s. ***or* p*t**in*, us*r-*ontroll** J*R p*t*s w*r* *ir**tly int*rpol*t** into J*v*S*ript *ont*xts wit*out prop

8.8

Basic Information

Concerned about an active attack path?

CVE-2021-21028: Reflected Cross-site Scripting in ACS Commons

Impact

Patches

Workarounds

References

For more information

Credit

8.8

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

CVE-2021-21028:
Reflected Cross-site Scripting in ACS Commons

Vulnerability Intelligence
Miggo AI