Vulnerability CVE-2024-1342


Published: 2024-02-16

Description:
A flaw was found in OpenShift. The existing Cross-Site Request Forgery (CSRF) protections in place do not properly protect GET requests, allowing for the creation of WebSockets via CSRF.

Type:

CWE-352

(Cross-Site Request Forgery (CSRF))

 References:
https://access.redhat.com/security/cve/CVE-2024-1342
https://bugzilla.redhat.com/show_bug.cgi?id=2259960

Copyright 2026, cxsecurity.com

 

Back to Top