VDB
RHSA-2020%3A3369
RHSA-2020%3A3369
PUBLISHED
CVSS 7.400000095367432 HIGH
An update is now available for OpenShift Service Mesh 1.1. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Risk Scores
CVSS 3.1
7.400000095367432
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat OpenShift Service Mesh 1.1 | ||
| kiali | ||
| servicemesh | ||
| OpenShift Service Mesh 1.1 | ||
| ior |
Exploit Intelligence
- Vulnearability Report of the New Jersey official site (github-poc-repo)
- Vulnearability Report of the New Jersey official site (github-poc-repo)
- Vulnearability Report of the New Jersey official site (github-poc-repo)
- patches for SNYK-JS-JQUERY-565129, SNYK-JS-JQUERY-567880, CVE-2020-1102, CVE-2020-11023, includes the patches for SNYK-JS-JQUERY-174006, CVE-2019-11358, CVE-2019-5428 (github-poc-repo)
- patches for SNYK-JS-JQUERY-565129, SNYK-JS-JQUERY-567880, CVE-2020-1102, CVE-2020-11023, includes the patches for SNYK-JS-JQUERY-174006, CVE-2019-11358, CVE-2019-5428 (github-poc-repo)
- patches for SNYK-JS-JQUERY-565129, SNYK-JS-JQUERY-567880, CVE-2020-1102, CVE-2020-11023, includes the patches for SNYK-JS-JQUERY-174006, CVE-2019-11358, CVE-2019-5428 (github-poc-repo)
- Little thing put together quickly to demonstrate this CVE (github-poc-repo)
- Little thing put together quickly to demonstrate this CVE (github-poc-repo)
- Little thing put together quickly to demonstrate this CVE (github-poc-repo)
- CVE-2020-11023 PoC for bug bounty. (github-poc-repo)
…and 66 more exploits
Timeline
- Aug 6, 2020 CVE Published
- Apr 9, 2026 Distribution Patch
- Apr 9, 2026 Distribution Patch
- Apr 9, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- May 16, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2020:3369 advisory
- https://access.redhat.com/security/updates/classification/#moderate url
- https://bugzilla.redhat.com/show_bug.cgi?id=1804533 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1850004 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1850034 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1853652 url
- https://bugzilla.redhat.com/show_bug.cgi?id=1857412 url
- https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3369.json advisory