[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2020-0374":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":16,"duplicates":17,"related":18,"reserved_at":9,"published_at":20,"modified_at":21,"state":9,"summary":22,"references_raw":24,"kevs":40,"epss":9,"epss_history":41,"metrics":42,"affected":43},"MGASA-2020-0374","Updated novnc package fixes a security vulnerability\n\nAn XSS vulnerability was discovered in noVNC before 0.6.2 in which the remote\nVNC server could inject arbitrary HTML into the noVNC web page via the messages\npropagated to the status field, such as the VNC server name. (CVE-2017-18635)\n",null,[],[],[],[14],{"_key":15},"CVE-2017-18635",[],[],[19],{"_key":15},"2020-09-27T20:06:37Z","2026-04-16T04:25:41.854079Z",{"cisa_kev":23,"cisa_ransomware":23,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[25,31,36],{"url":26,"sources":27,"tags":29},"https://advisories.mageia.org/MGASA-2020-0374.html",[28],"osv_mageia",[30],"Advisory",{"url":32,"sources":33,"tags":34},"https://bugs.mageia.org/show_bug.cgi?id=27306",[28],[35],"REPORT",{"url":37,"sources":38,"tags":39},"https://ubuntu.com/security/notices/USN-4522-1",[28],[35,30],[],[],[],[44],{"ecosystem":45,"name":46,"vendor":47,"product":46,"cpe_part":9,"purl_type":48,"purl_namespace":47,"purl_name":46,"source":9,"versions":49},"Mageia","novnc","mageia","rpm",[50],{"version":51,"is_range":52,"range_type":53,"version_start":9,"version_start_type":9,"version_end":54,"version_end_type":55,"fixed_in":9},"lt0_5_1_2_1_mga7",true,"ecosystem","0.5.1-2.1.mga7","excluding"]