CVE-2020-10715: Improper Input Validation
(updated )
A content spoofing vulnerability was found in the openshift/console
This flaw allows an attacker to craft a URL and inject arbitrary text onto the error page that appears to be from the OpenShift instance. This attack could potentially convince a user that the inserted text is legitimate.
References
Detect and mitigate CVE-2020-10715 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →