RSS   Podatności dla 'Devspace'   RSS

2020-07-23
 
CVE-2020-15391

CWE-287
 

 
The UI in DevSpace 4.13.0 allows web sites to execute actions on pods (on behalf of a victim) because of a lack of authentication for the WebSocket protocol. This leads to remote code execution.

 


Copyright 2024, cxsecurity.com

 

Back to Top