OpenShift ServiceMesh (maistra)

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2022-3962	Red Hat OpenShift ServiceMesh (maistra)		0.00	—	0.00		Sep 23, 2023	A content spoofing vulnerability was found in Kiali. It was discovered that Kiali does not implement error handling when the page or endpoint being accessed cannot be found. This issue allows an attacker to perform arbitrary text injection when an error response is retrieved…
CVE-2020-1704	Red Hat OpenShift ServiceMesh (maistra)		0.00	—	0.00		Feb 17, 2020	An insecure modification vulnerability in the /etc/passwd file was found in all versions of OpenShift ServiceMesh (maistra) before 1.0.8 in the openshift/istio-kialia-rhel7-operator-container. An attacker with access to the container could use this flaw to modify /etc/passwd and…

CVE-2022-3962Sep 23, 2023
Red Hat
OpenShift ServiceMesh (maistra)
risk 0.00cvss —epss 0.00
A content spoofing vulnerability was found in Kiali. It was discovered that Kiali does not implement error handling when the page or endpoint being accessed cannot be found. This issue allows an attacker to perform arbitrary text injection when an error response is retrieved…
CVE-2020-1704Feb 17, 2020
Red Hat
OpenShift ServiceMesh (maistra)
risk 0.00cvss —epss 0.00
An insecure modification vulnerability in the /etc/passwd file was found in all versions of OpenShift ServiceMesh (maistra) before 1.0.8 in the openshift/istio-kialia-rhel7-operator-container. An attacker with access to the container could use this flaw to modify /etc/passwd and…