← Back

Container Cloud Lens Extension

container_cloud_lens_extension

Vendor: Mirantis • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-0484
1Mirantis
1Container Cloud Lens Extension
Nov 21, 2024
Feb 4, 2022
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Lack of validation of URLs causes Mirantis Container Cloud Lens Extension before v3.1.1 to open external programs other than the default browser to perform sign on to a new cluster. An attacker could host a webserver whi...Show more
Lack of validation of URLs causes Mirantis Container Cloud Lens Extension before v3.1.1 to open external programs other than the default browser to perform sign on to a new cluster. An attacker could host a webserver which serves a malicious Mirantis Container Cloud configuration file and induce the victim to add a new cluster via its URL. This issue affects: Mirantis Mirantis Container Cloud Lens Extension v3 versions prior to v3.1.1.Show less