CVE-2021-3442
N/A
N/A
Summary
A flaw was found in the Red Hat OpenShift API Management product. User input is not validated allowing an authenticated user to inject scripts into some text boxes leading to a XSS attack. The highest threat from this vulnerability is to data confidentiality.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Red Hat OpenShift API Management. | Affects v2.9.1 GA. | affected |
Weaknesses
- CWE-20: CWE-20 - Improper Input Validation -> CWE-134 - Use of Externally-Controlled Format String
ADP Enrichment
CVE Program Container
Additional References
- https://bugzilla.redhat.com/show_bug.cgi?id=1930083
- https://access.redhat.com/security/cve/CVE-2021-3442
References
- https://bugzilla.redhat.com/show_bug.cgi?id=1930083
- https://access.redhat.com/security/cve/CVE-2021-3442
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.