Openshift/Console
Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:openshift/console:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Openshift/Console (4de97d67-78ed-592a-b1c3-f5a18c726643) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-1761 |
vulnerable | 2026-06-08 05:21:02.996413 |
Details available
A flaw was found in the OpenShift web console, where the access token is stored in the browser's local storage. An attacker can use this flaw to get the access token via physical access, or an XSS attack on the victim's browser. This flaw affects openshift/console versions before openshift/console-4.
Published: 2021-05-27T19:45:14.000Z
Updated: 2024-08-04T06:46:30.893Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-10715 |
vulnerable | 2026-06-08 05:16:35.720433 |
Details available
A content spoofing vulnerability was found in the openshift/console 3.11 and 4.x. This flaw allows an attacker to craft a URL and inject arbitrary text onto the error page that appears to be from the OpenShift instance. This attack could potentially convince a user that the inserted text is legitimate.
Published: 2020-09-16T18:00:27.000Z
Updated: 2024-08-04T11:14:14.279Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.