Search for packages
| purl | pkg:rpm/redhat/atomic-openshift-web-console@3.11.248-1.git.1.cc96c2d?arch=el7 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 3.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-bhnm-47u8-zfhr
Aliases: CVE-2020-7598 GHSA-vh95-rmgr-6w4m |
Prototype Pollution in minimist Affected versions of `minimist` are vulnerable to prototype pollution. Arguments are not properly sanitized, allowing an attacker to modify the prototype of `Object`, causing the addition or modification of an existing property that will exist on all objects. Parsing the argument `--__proto__.y=Polluted` adds a `y` property with value `Polluted` to all objects. The argument `--__proto__=Polluted` raises and uncaught error and crashes the application. This is exploitable if attackers have control over the arguments being passed to `minimist`. ## Recommendation Upgrade to versions 0.2.1, 1.2.3 or later. | There are no reported fixed by versions. |
|
VCID-sb1g-n289-kfa7
Aliases: CVE-2020-10715 |
openshift/console: text injection on error page via crafted url | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T14:10:05.923823+00:00 | RedHat Importer | Affected by | VCID-bhnm-47u8-zfhr | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-7598.json | 38.0.0 |
| 2026-04-01T14:05:31.613143+00:00 | RedHat Importer | Affected by | VCID-sb1g-n289-kfa7 | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10715.json | 38.0.0 |