Unvalidated Redirect

2019-12-0507:35:32

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.001 Low

EPSS

Percentile

22.7%

JSON

github.com/kubernetes/kubernetes is vulnerable to unvalidated redirects. The vulnerability exists as an attacker-controlled Kubelet can return an arbitrary redirect when a Kubernetes API server with the StreamingProxyRedirects feature enabled AND without the ValidateProxyRedirects feature, responds to apiserver requests.

CPENameOperatorVersion
github.com/kubernetes/kubernetesle1.1.3
atomic-openshift-web-consoleeq3.11.248__1.git.1.cc96c2d.el7
atomic-openshift-web-consoleeq3.10.111__1.git.1.d757094.el7
atomic-openshift-web-consoleeq3.10.83__1.git.406.2c026c8.el7
atomic-openshift-web-consoleeq3.9.71__1.git.1.f8c4656.el7
atomic-openshift-web-consoleeq3.11.59__1.git.332.067c22e.el7
atomic-openshift-web-consoleeq3.11.69__1.git.342.bf90c18.el7
atomic-openshift-web-consoleeq3.11.286__1.git.1.16f42e7.el7
atomic-openshift-web-consoleeq3.9.33__1.git.248.9592e57.el7
atomic-openshift-web-consoleeq3.10.127__1.git.50.eab7949.el7

Name	Operator	Version
github.com/kubernetes/kubernetes	le	1.1.3
atomic-openshift-web-console	eq	3.11.248__1.git.1.cc96c2d.el7
atomic-openshift-web-console	eq	3.10.111__1.git.1.d757094.el7
atomic-openshift-web-console	eq	3.10.83__1.git.406.2c026c8.el7
atomic-openshift-web-console	eq	3.9.71__1.git.1.f8c4656.el7
atomic-openshift-web-console	eq	3.11.59__1.git.332.067c22e.el7
atomic-openshift-web-console	eq	3.11.69__1.git.342.bf90c18.el7
atomic-openshift-web-console	eq	3.11.286__1.git.1.16f42e7.el7
atomic-openshift-web-console	eq	3.9.33__1.git.248.9592e57.el7
atomic-openshift-web-console	eq	3.10.127__1.git.50.eab7949.el7