Bug 2147389 (CVE-2022-4133)
| Summary: | CVE-2022-4133 openstack-horizon: reflected XSS | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Anten Skrabec <askrabec> |
| Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
| Status: | CLOSED NOTABUG | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | unspecified | CC: | apevec, eglynn, hguemar, ihrachys, jjoyce, jschluet, lhh, lpeer, majopela, mburns, mgarciac, njohnston, openstack-manila-bugs, rdopiera, rhos-maint, rnoriega, scohen, slinaber, spower, tvignaud |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: |
A reflected Cross-site scripting (XSS) vulnerability was found in the Red Hat OpenStack Platform dashboard. This issue could allow an attacker to trick a user into pasting malicious code in the “Allocation Pools” instance.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | 2023-02-08 11:15:36 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 2147390, 2147391, 2147392, 2147393, 2147394, 2147395, 2147396, 2147397, 2147398, 2147399, 2147400, 2147401, 2147402, 2147403, 2147404, 2147405, 2147406, 2147407, 2147408, 2147409, 2147410, 2147411, 2147412, 2147413, 2147414, 2147415, 2147416, 2147417, 2147418, 2147419, 2147420, 2147421, 2147422, 2147423, 2147424, 2147425, 2147426, 2147427, 2147428, 2147429, 2147430, 2147431, 2147432, 2147433, 2147434, 2147435, 2147436, 2147437, 2147438, 2147439 | ||
| Bug Blocks: | 2134220 | ||
|
Description
Anten Skrabec
2022-11-23 21:28:18 UTC
Created openstack-cloudkitty-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147390] Created openstack-designate-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147391] Created openstack-heat-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147392] Created openstack-magnum-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147393] Created openstack-manila-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147394] Created openstack-mistral-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147395] Created openstack-murano-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147396] Created openstack-octavia-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147397] Created openstack-sahara-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147398] Created openstack-trove-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147399] Created openstack-vitrage-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147400] Created puppet-horizon tracking bugs for this issue: Affects: openstack-rdo [bug 2147401] Created python-django-horizon tracking bugs for this issue: Affects: openstack-rdo [bug 2147402] Created python-networking-bgpvpn tracking bugs for this issue: Affects: openstack-rdo [bug 2147403] Created openstack-cloudkitty-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147426] Created openstack-designate-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147427] Created openstack-heat-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147428] Created openstack-magnum-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147429] Created openstack-manila-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147430] Created openstack-mistral-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147431] Created openstack-murano-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147432] Created openstack-octavia-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147433] Created openstack-sahara-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147434] Created openstack-trove-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147435] Created openstack-vitrage-ui tracking bugs for this issue: Affects: openstack-rdo [bug 2147436] Created puppet-horizon tracking bugs for this issue: Affects: openstack-rdo [bug 2147437] Created python-django-horizon tracking bugs for this issue: Affects: openstack-rdo [bug 2147438] Created python-networking-bgpvpn tracking bugs for this issue: Affects: openstack-rdo [bug 2147439] |