CVE-2018-10937
published 2018-09-11CVE-2018-10937: A cross site scripting flaw exists in the tetonic-console component of Openshift Container Platform 3.11. An attacker with the ability to create pods can use…
medium5.4CVSS 3.0
AVNACLPRLUIRSCCLILAN
A cross site scripting flaw exists in the tetonic-console component of Openshift Container Platform 3.11. An attacker with the ability to create pods can use this flaw to perform actions on the K8s API as the victim.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| red_hat | openshift_container_platform | — | — |
| redhat | openshift_container_platform | — | — |