Security Advisory

CVE-2022-3962

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-23 19:00:54

Last updated 2024-08-03 01:27:53

Assigner redhat

State PUBLISHED

Description

A content spoofing vulnerability was found in Kiali. It was discovered that Kiali does not implement error handling when the page or endpoint being accessed cannot be found. This issue allows an attacker to perform arbitrary text injection when an error response is retrieved from the URL being accessed.

← Browse all CVEs View on cve.org ↗