CVE-2020-5219

Remote Code Execution in Angular Expressions

Description

Angular Expressions before version 1.0.1 has a remote code execution vulnerability if you call expressions.compile(userControlledInput) where userControlledInput is text that comes from user input. If running angular-expressions in the browser, an attacker could run any browser script when the application code calls expressions.compile(userControlledInput). If running angular-expressions on the server, an attacker could run any Javascript expression, thus gaining Remote Code Execution.

Category

8.7
CVSS
Severity: High
CVSS 3.1 •
CVSS 2.0 •
EPSS 0.63%
Vendor Advisory angularjs.org
Affected: peerigon angular-expressions
Published at:
Updated at:

References

Link Tags
https://github.com/peerigon/angular-expressions/security/advisories/GHSA-hxhm-96pp-2m43 third party advisory mitigation
https://github.com/peerigon/angular-expressions/commit/061addfb9a9e932a970e5fcb913d020038e65667 patch
http://blog.angularjs.org/2016/09/angular-16-expression-sandbox-removal.html vendor advisory

Frequently Asked Questions

What is the severity of CVE-2020-5219?
CVE-2020-5219 has been scored as a high severity vulnerability.
How to fix CVE-2020-5219?
To fix CVE-2020-5219, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2020-5219 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2020-5219 is being actively exploited. According to its EPSS score, there is a ~1% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2020-5219?
CVE-2020-5219 affects peerigon angular-expressions.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.