CVE-2020-10715

CVE-2020-10715

Vendor N/A
Product openshift/console
Weakness CWE-20 · Input validation
Published September 16, 2020
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

A content spoofing vulnerability was found in the openshift/console 3.11 and 4.x. This flaw allows an attacker to craft a URL and inject arbitrary text onto the error page that appears to be from the OpenShift instance. This attack could potentially convince a user that the inserted text is legitimate.

Key dates

02Disclosure timeline

September 16, 2020 CVE published
August 4, 2024 Record updated