CVE-2020-36621

Name of the Vulnerable Software and Affected Versions chedabob whatismyudid (affected versions not specified)

Description A problematic issue has been found in chedabob whatismyudid, affecting the function exports.enrollment of the file routes/mobileconfig.js. This issue leads to cross-site scripting and can be launched remotely.

Recommendations To fix this issue, it is recommended to apply a patch with the name bb33d4325fba80e7ea68b79121dba025caf6f45f. As a temporary workaround, consider disabling the exports.enrollment function until a patch is available. Restrict access to the routes/mobileconfig.js file to minimize the risk of exploitation.