Oasis
1 CVEs
product
Monthly
Oasis before version 2.15.0 has a potential DNS rebinding or CSRF vulnerability. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
CSRF
Oasis
NVD
GitHub
CVSS 3.1
8.1
EPSS
0.5%
CVE-2020-11003
npm
EPSS 1%
CVSS 8.1
HIGH
PATCH
This Week
Oasis before version 2.15.0 has a potential DNS rebinding or CSRF vulnerability. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
CSRF
Oasis
NVD
GitHub