Vulnerability Details CVE-2020-10743
It was discovered that OpenShift Container Platform's (OCP) distribution of Kibana could open in an iframe, which made it possible to intercept and manipulate requests. This flaw allows an attacker to trick a user into performing arbitrary actions in OCP's distribution of Kibana, such as clickjacking.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.9%
CVSS Severity
CVSS v3 Score 4.3
CVSS v2 Score 4.3
References
Products affected by CVE-2020-10743
-
cpe:2.3:a:elastic:kibana:-
-
cpe:2.3:a:redhat:openshift_container_platform:3.11.286
-
cpe:2.3:a:redhat:openshift_container_platform:4.6.1