Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:openshift/console:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductOpenshift/Console (4de97d67-78ed-592a-b1c3-f5a18c726643)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2020-1761 vulnerable 2026-06-08 05:21:02.996413 Details available
A flaw was found in the OpenShift web console, where the access token is stored in the browser's local storage. An attacker can use this flaw to get the access token via physical access, or an XSS attack on the victim's browser. This flaw affects openshift/console versions before openshift/console-4.
Published: 2021-05-27T19:45:14.000Z
Updated: 2024-08-04T06:46:30.893Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-10715 vulnerable 2026-06-08 05:16:35.720433 Details available
A content spoofing vulnerability was found in the openshift/console 3.11 and 4.x. This flaw allows an attacker to craft a URL and inject arbitrary text onto the error page that appears to be from the OpenShift instance. This attack could potentially convince a user that the inserted text is legitimate.
Published: 2020-09-16T18:00:27.000Z
Updated: 2024-08-04T11:14:14.279Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.