CVE-2019-3889

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2019-3889

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-3889.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2019-3889

Downstream

RHSA-2020:0795

Published

2019-07-11T19:15:13.377Z

Modified

2026-01-06T10:03:39.283240Z

Severity

5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

A reflected XSS vulnerability exists in authorization flow of OpenShift Container Platform versions: openshift-online-3, openshift-enterprise-3.4 through 3.7 and openshift-enterprise-3.9 through 3.11. An attacker could use this flaw to steal authorization data by getting them to click on a malicious link.

References

Affected packages

Git / github.com/torvalds/linux

Affected ranges

Type: GIT
Repo: https://github.com/torvalds/linux
Events: Introduced

76e10d158efb6d4516018846f60c2ab5501900bc

Last affected

29594404d7fe73cd80eaa4ee8c43dcc53970c60e

Last affected

64291f7db5bd8150a74ad2036f1037e6a0428df2

Introduced

c1be5a5b1b355d40e6cf79cc979eb66dafa24ad1

Last affected

6e4664525b1db28f8c4e1130957f70a94c19213e

Last affected

b953c0d234bc72e8489d3bf51a276c5c4ec85345

Affected versions

v3.*

v3.4

v3.5

v3.5-rc1

v3.5-rc2

v3.5-rc3

v3.5-rc4

v3.5-rc5

v3.5-rc6

v3.5-rc7

v3.6

v3.6-rc1

v3.6-rc2

v3.6-rc3

v3.6-rc4

v3.6-rc5

v3.6-rc6

v3.6-rc7

v3.7

v3.7-rc1

v3.7-rc2

v3.7-rc3

v3.7-rc4

v3.7-rc5

v3.7-rc6

v3.7-rc7

v3.7-rc8

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-3889.json"