CVE-2023-1241
published 2023-03-07CVE-2023-1241: Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
PriorityP424medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
EPSS
0.62%
45.2th percentile
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| answer | answer | < 1.0.6 | 1.0.6 |
| answerdev | answerdev_answer | >= unspecified < 1.0.6 | 1.0.6 |
| github.com | answerdev_answer | >= 0 < 1.0.6 | 1.0.6 |
| github.com | metal3-io_baremetal-operator | >= 0 < 0.3.0 | 0.3.0 |
CVSS provenance
nvdv3.15.4MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vendor_redhat6.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer
osv·2024-08-20
CVE-2023-1241 Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer
Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer
Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer
GHSA
Ironic and ironic-inspector may expose as ConfigMaps
ghsa·2023-04-26
CVE-2023-30841 [MEDIUM] CWE-200 Ironic and ironic-inspector may expose as ConfigMaps
Ironic and ironic-inspector may expose as ConfigMaps
### Impact
Ironic and ironic-inspector deployed within Baremetal Operator using the included `deploy.sh` store their `.htpasswd` files as ConfigMaps instead of Secrets. This causes the plain-text username and hashed password to be readable by anyone having a cluster-wide read-access to the management cluster, or access to the management cluster's Etcd storage.
### Patches
This issue is patched in [baremetal-operator PR#1241](https://github.com/metal3-io/baremetal-operator/pull/1241), and is included in BMO release 0.3.0 onwards.
### Workarounds
User may modify the kustomizations and redeploy the BMO, or recreate the required ConfigMaps as Secrets per instructions in [baremetal-operator PR#1241](https://github.com/metal3-io/baremetal-o
OSV
Answer vulnerable to Cross-site Scripting
osv·2023-03-07
CVE-2023-1241 [MEDIUM] Answer vulnerable to Cross-site Scripting
Answer vulnerable to Cross-site Scripting
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
GHSA
Answer vulnerable to Cross-site Scripting
ghsa·2023-03-07
CVE-2023-1241 [MEDIUM] CWE-79 Answer vulnerable to Cross-site Scripting
Answer vulnerable to Cross-site Scripting
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
Red Hat
baremetal-operator: plain-text username and hashed password readable by anyone having a cluster-wide read-access
vendor_redhat·2023-04-27·CVSS 6.0
CVE-2023-30841 [MEDIUM] baremetal-operator: plain-text username and hashed password readable by anyone having a cluster-wide read-access
baremetal-operator: plain-text username and hashed password readable by anyone having a cluster-wide read-access
Baremetal Operator (BMO) is a bare metal host provisioning integration for Kubernetes. Prior to version 0.3.0, ironic and ironic-inspector deployed within Baremetal Operator using the included `deploy.sh` store their `.htpasswd` files as ConfigMaps instead of Secrets. This causes the plain-text username and hashed password to be readable by anyone having a cluster-wide read-access to the management cluster, or access to the management cluster's Etcd storage. This issue is patched in baremetal-operator PR#1241, and is included in BMO release 0.3.0 onwards. As a workaround, users may modify the kustomizations and redeploy the BMO, or recreate the required ConfigMaps as Secrets pe
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-03-07
Published