CVE-2014-4510
EPSS 0.27%
Description
Cross-site scripting (XSS) vulnerability in job.cc in apt-cacher-ng 0.7.26 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
How to fix CVE-2014-4510
To remediate CVE-2014-4510, upgrade the affected package to a fixed version below.
- Debian/apt-cacher-ng—upgrade to 0.7.26-2 or later
Is CVE-2014-4510 being exploited?
Low — EPSS is 0.3%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 0.7.26-2