1930083 – (CVE-2021-3442) CVE-2021-3442 PT RHOAM: XSS in 3scale at various places

Bug 1930083 (CVE-2021-3442) - CVE-2021-3442 PT RHOAM: XSS in 3scale at various places

Summary: CVE-2021-3442 PT RHOAM: XSS in 3scale at various places

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2021-3442
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Duplicates (1):	1850967 (view as bug list)
Depends On:
Blocks:	1928242 1939022
TreeView+	depends on / blocked

Reported:	2021-02-18 10:49 UTC by lnacshon
Modified:	2021-10-14 08:08 UTC (History)
CC List:	8 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:	A flaw was found in the Red Hat OpenShift API Management product. User input is not validated allowing an authenticated user to inject scripts into some text boxes leading to a XSS attack. The highest threat from this vulnerability is to data confidentiality.
Clone Of:
Environment:
Last Closed:	2021-10-14 08:08:33 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2021:3851	0	None	None	None	2021-10-14 07:55:18 UTC

Description lnacshon 2021-02-18 10:49:22 UTC

During the test we found that there are no input validation for user input, and its possible to inject scripts into text box in the following links 

https://3scale-admin.apps.rhoam-pentest.ofop.p1.openshiftapps.com/site/emails/edit
https://3scale-admin.apps.rhoam-pentest.ofop.p1.openshiftapps.com/p/admin/backend_apis/2
The XSS attack is possible only by an authenticated user so the severity is low

Comment 7 lnacshon 2021-03-15 09:56:41 UTC

Acknowledgments:

Name: Siddharth Sharma (Red Hat Product Security), Or Asaf (Red Hat Product Security)

Comment 8 lnacshon 2021-07-07 11:58:13 UTC

Affected version 2.9.1 GA

Comment 10 Chess Hazlett 2021-07-22 20:33:26 UTC

*** Bug 1850967 has been marked as a duplicate of this bug. ***

Comment 11 errata-xmlrpc 2021-10-14 07:55:17 UTC

This issue has been addressed in the following products:

  3scale API Management

Via RHSA-2021:3851 https://access.redhat.com/errata/RHSA-2021:3851

Comment 12 Product Security DevOps Team 2021-10-14 08:08:33 UTC

This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2021-3442

Note You need to log in before you can comment on or make changes to this bug.