What the vulnerability does

01Description

A vulnerability was found in openstack-nova's console proxy, noVNC. By crafting a malicious URL, noVNC could be made to redirect to any desired URL.

Key dates

02Disclosure timeline

March 2, 2022 CVE published
August 3, 2024 Record updated