CVE-2022-3260

The response header has not enabled X-FRAME-OPTIONS, Which helps prevents against Clickjacking attack.. Some browsers would interpret these results incorrectly, allowing clickjacking attacks.
References
Link Resource
https://bugzilla.redhat.com/show_bug.cgi?id=2106780 Exploit Issue Tracking Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2106780 Exploit Issue Tracking Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:redhat:openshift:4.9:*:*:*:*:*:*:*

History

21 Nov 2024, 07:19

Type Values Removed Values Added
References () https://bugzilla.redhat.com/show_bug.cgi?id=2106780 - Exploit, Issue Tracking, Vendor Advisory () https://bugzilla.redhat.com/show_bug.cgi?id=2106780 - Exploit, Issue Tracking, Vendor Advisory

Information

Published : 2022-12-08 16:15

Updated : 2024-11-21 07:19


NVD link : CVE-2022-3260

Mitre link : CVE-2022-3260

CVE.ORG link : CVE-2022-3260


JSON object : View

Products Affected

redhat

  • openshift
CWE
CWE-1021

Improper Restriction of Rendered UI Layers or Frames