CVE-2021-4294MEDIUM≥ 0, < 1.0.2-0.20210113124101-8612686d6dda2022-12-28
CVE-2021-4294 [MEDIUM] CWE-203 OpenShift OSIN vulnerable to Observable Timing Discrepancy
OpenShift OSIN vulnerable to Observable Timing Discrepancy
A vulnerability was found in OpenShift OSIN. It has been classified as problematic. This affects the function `ClientSecretMatches/CheckClientSecret`. The manipulation of the argument secret leads to observable timing discrepancy. The name of the patch is 8612686d6dda34ae9ef6b5a974e4b7accb4fea29. It is recommended to apply a patch to fix this issue
ghsaosv