CVE-2021-3442

Summary

A flaw was found in the Red Hat OpenShift API Management product. User input is not validated allowing an authenticated user to inject scripts into some text boxes leading to a XSS attack. The highest threat from this vulnerability is to data confidentiality.

Affected Software

VendorProductVersion RangeStatus
n/aRed Hat OpenShift API Management.Affects v2.9.1 GA.affected

Weaknesses

  • CWE-20: CWE-20 - Improper Input Validation -> CWE-134 - Use of Externally-Controlled Format String

ADP Enrichment

CVE Program Container

Additional References

References