github.com/openshift/console (Go) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Go package github.com/openshift/console, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2024-6508 — CVSS 8.0 (high): An insufficient entropy vulnerability was found in the Openshift Console. In the authorization code type and implicit grant type, the…
CVE-2024-50312 — CVSS 5.3 (medium): A vulnerability was found in GraphQL due to improper access controls on the GraphQL introspection query. This flaw allows unauthorized…
CVE-2024-6538 — CVSS 5.3 (medium): A flaw was found in OpenShift Console. A Server Side Request Forgery (SSRF) attack can happen if an attacker supplies all or part of a URL…
CVE-2024-7631 — CVSS 4.3 (medium): A flaw was found in the OpenShift Console, an endpoint for plugins to serve resources in multiple languages: /locales/resources.json. This…