CVE-2017-7534 - AskarLabs CVE Database

CVE-2017-7534

Vendor Red Hat, Inc.

Product Openshift

Weakness CWE-79 · XSS

Published April 11, 2018

Last update August 5, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

OpenShift Enterprise version 3.x is vulnerable to a stored XSS via the log viewer for pods. The flaw is due to lack of sanitation of user input, specifically terminal escape characters, and the creation of clickable links automatically when viewing the log files for a pod.

Key dates

02Disclosure timeline

April 11, 2018 CVE published

August 5, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2017-7534 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/79.html

Related vulnerabilities

04Related CVE

CVE-2024-0310 CVE-2022-2266 Reflected XSS University Library Automation System CVE-2025-54044 WordPress Elite Video Player <= 10.0.5 - Cross Site Scripting (XSS) Vulnerability CVE-2023-6813 Login by Auth0 <= 4.6.0 - Reflected Cross-Site Scripting via wle CVE-2024-54210 WordPress Advanced Element Bucket Addons for Elementor plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability