Security Advisory

CVE-2020-1761

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-27 19:45:14

Last updated 2024-08-04 06:46:30

Assigner redhat

State PUBLISHED

Description

A flaw was found in the OpenShift web console, where the access token is stored in the browsers local storage. An attacker can use this flaw to get the access token via physical access, or an XSS attack on the victims browser. This flaw affects openshift/console versions before openshift/console-4.

← Browse all CVEs View on cve.org ↗