CVSS: 5.0EPSS: 0%CPEs: 5EXPL: 0CVE-2022-3962 – Kiali: error message spoofing in kiali ui
https://notcve.org/view.php?id=CVE-2022-3962
31 Jan 2023 — A content spoofing vulnerability was found in Kiali. It was discovered that Kiali does not implement error handling when the page or endpoint being accessed cannot be found. This issue allows an attacker to perform arbitrary text injection when an error response is retrieved from the URL being accessed. Se encontró una vulnerabilidad de suplantación de contenido en Kiali. Se descubrió que Kiali no implementa el manejo de errores cuando no se puede encontrar la página o el endpoint al que se accede. • https://access.redhat.com/errata/RHSA-2023:0542 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-20278
https://notcve.org/view.php?id=CVE-2021-20278
28 May 2021 — An authentication bypass vulnerability was found in Kiali in versions before 1.31.0 when the authentication strategy `OpenID` is used. When RBAC is enabled, Kiali assumes that some of the token validation is handled by the underlying cluster. When OpenID `implicit flow` is used with RBAC turned off, this token validation doesn't occur, and this allows a malicious user to bypass the authentication. Se encontró una vulnerabilidad de omisión de autenticación en Kiali en versiones anteriores a 1.31.0, cuando es... • https://bugzilla.redhat.com/show_bug.cgi?id=1937171 • CWE-287: Improper Authentication CWE-290: Authentication Bypass by Spoofing •
CVSS: 8.6EPSS: 1%CPEs: 2EXPL: 0CVE-2020-1762 – kiali: ignoring JWT claim fields
https://notcve.org/view.php?id=CVE-2020-1762
27 Apr 2020 — An insufficient JWT validation vulnerability was found in Kiali versions 0.4.0 to 1.15.0 and was fixed in Kiali version 1.15.1, wherein a remote attacker could abuse this flaw by stealing a valid JWT cookie and using that to spoof a user session, possibly gaining privileges to view and alter the Istio configuration. Se encontró una vulnerabilidad de comprobación de JWT insuficiente en Kiali versiones 0.4.0 hasta la versión 1.15.0, y fue corregido en la versión 1.15.1, en la que un atacante remoto podría abu... • https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1762 • CWE-384: Session Fixation CWE-613: Insufficient Session Expiration •
CVSS: 8.6EPSS: 5%CPEs: 2EXPL: 2CVE-2020-1764 – kiali: JWT cookie uses default signing key
https://notcve.org/view.php?id=CVE-2020-1764
26 Mar 2020 — A hard-coded cryptographic key vulnerability in the default configuration file was found in Kiali, all versions prior to 1.15.1. A remote attacker could abuse this flaw by creating their own JWT signed tokens and bypass Kiali authentication mechanisms, possibly gaining privileges to view and alter the Istio configuration. Se detectó una vulnerabilidad de clave criptográfica embebida en el archivo de configuración predeterminado en Kiali, todas las versiones anteriores a 1.15.1. Un atacante remoto podría abu... • https://github.com/jpts/cve-2020-1764-poc • CWE-321: Use of Hard-coded Cryptographic Key CWE-798: Use of Hard-coded Credentials •