CVE-2020-36850

Sitecore JSS React Sample Application 11.0.0 - 14.0.1 Information Disclosure

Description

An information disclosure vulnerability exits in Sitecore JSS React Sample Application 11.0.0 - 14.0.1 that may cause page content intended for one user to be shown to another user.

INFO

Published Date :

2025-07-25T15:54:04.348Z

Last Modified :

2026-03-05T12:02:21.538Z

Source :

VulnCheck

AFFECTED PRODUCTS

The following products are affected by CVE-2020-36850 vulnerability.

Vendors	Products
Sitecore	Sitecore Sitecore.net

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2020-36850.

URL	Resource
https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB0750906
https://support.sitecore.com/kb?id=kb_article_view&sysparm_article=KB1001612
https://www.vulncheck.com/advisories/sitecore-jss-react-sample-application-info-disc

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability