Overview
The Versiant LYNX Customer Service Portal version 3.5.2 is vulnerable to stored cross-site scripting, which may allow a local, authenticated attacker to execute arbitrary JavaScript.
Description
The Versiant LYNX Customer Service Portal (CSP) is a "full-service customer portal that provides real-time information to terminal operators on the status of shipments into and out of a marine container terminal". The LYNX CSP, version 3.5.2, is vulnerable to stored cross-site scripting, which could allow a local, authenticated attacker to insert malicious JavaScript that is stored and displayed to the end user. |
Impact
A local, authenticated attacker could store malicious JavaScript in the CSP that would execute JavaScript in the browser of any user that views it. This could lead to website redirects, session cookie hijacking, or information disclosure. |
Solution
Apply an update This vulnerability has been patched in version 3.5.3 of Versiant LYNX Customer Service Portal. Customers should log into the Lynx customer portal to obtain the latest version. |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | 3.2 | AV:L/AC:L/Au:S/C:N/I:P/A:P |
| Temporal | 2.9 | E:POC/RL:U/RC:C |
| Environmental | 0.9 | CDP:L/TD:L/CR:ND/IR:ND/AR:ND |
References
- https://csp.poha.com/
- https://www.versiant.com/lynx
- https://cwe.mitre.org/data/definitions/79.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9055
- https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)#Stored_and_Reflected_XSS_Attacks
- https://cheatsheetseries.owasp.org/cheatsheets/OS_Command_Injection_Defense_Cheat_Sheet.html
Acknowledgements
This document was written by Laurie Tyzenhaus.
Other Information
| CVE IDs: | CVE-2020-9055 |
| Date Public: | 2020-03-30 |
| Date First Published: | 2020-03-30 |
| Date Last Updated: | 2020-03-30 17:39 UTC |
| Document Revision: | 48 |