Unrated severityNVD Advisory· Published Aug 2, 2019· Updated Aug 4, 2024
CVE-2019-10176
CVE-2019-10176
Description
A flaw was found in OpenShift Container Platform, versions 3.11 and later, in which the CSRF tokens used in the cluster console component were found to remain static during a user's session. An attacker with the ability to observe the value of this token would be able to re-use the token to perform a CSRF attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: >=3.11
Patches
Vulnerability mechanics
References
3- access.redhat.com/errata/RHSA-2019:2792mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2019:4053mitrevendor-advisoryx_refsource_REDHAT
- bugzilla.redhat.com/show_bug.cgimitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.