5.4

CVSS Score

3.1

Basic Information

CVE ID

CVE-2021-4231

GHSA ID

GHSA-c75v-2vq8-878f

EPSS Score

0.78833%

CWE

CWE-79

Published

5/27/2022

Updated

10/10/2023

KEV Status

Technology

JavaScript

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2021-4231

CVE-2021-4231: Cross site scripting in Angular

A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to version 10.2.5, 11.0.5 or 11.1.0-next.3 is advised to to address this issue.

(GitHub Advisory)

5.4

CVSS Score

3.1

Basic Information

CVE ID

CVE-2021-4231

GHSA ID

GHSA-c75v-2vq8-878f

EPSS Score

0.78833%

CWE

CWE-79

Published

5/27/2022

Updated

10/10/2023

KEV Status

Technology

JavaScript

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
@angular/core	npm	>= 11.1.0-next.0, <= 11.1.0-next.2	11.1.0-next.3
@angular/core	npm	>= 11.0.0, < 11.0.5	11.0.5
@angular/core	npm	< 10.2.5	10.2.5

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from improper escaping in comment text handling. The commit diff shows:

A complete rewrite of the escaping logic in dom.ts, replacing the original END_COMMENT regex with COMMENT_DISALLOWED and COMMENT_DELIMITER patterns
Test cases added/updated in security_spec.ts and dom_spec.ts demonstrating XSS via various comment closure patterns
The CVE description explicitly mentions 'handling of comments' as the attack vector
The patch changes focused on surrounding < and > with zero-width spaces to prevent comment boundary injection
The original escapeCommentText function's limited replacement pattern left multiple XSS attack vectors unaddressed

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* vuln*r**ility w*s *oun* in *n*ul*r up to **.*.*/**.*.*-n*xt.*. It **s ***n *l*ssi*i** *s pro*l*m*ti*. *****t** is t** **n*lin* o* *omm*nts. T** m*nipul*tion l***s to *ross sit* s*riptin*. It is possi*l* to l*un** t** *tt**k r*mot*ly *ut it mi**t r*

Reasoning

T** vuln*r**ility st*ms *rom improp*r *s**pin* in *omm*nt t*xt **n*lin*. T** *ommit *i** s*ows: *. * *ompl*t* r*writ* o* t** *s**pin* lo*i* in *om.ts, r*pl**in* t** ori*in*l *N*_*OMM*NT r***x wit* *OMM*NT_*IS*LLOW** *n* *OMM*NT_**LIMIT*R p*tt*rns *.

5.4

Basic Information

Concerned about an active attack path?

CVE-2021-4231: Cross site scripting in Angular

5.4

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI