Vulnerabilities (CVE)

Filtered by vendor Devspace Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-15391 1 Devspace 1 Devspace 2024-02-28 7.5 HIGH 9.8 CRITICAL
The UI in DevSpace 4.13.0 allows web sites to execute actions on pods (on behalf of a victim) because of a lack of authentication for the WebSocket protocol. This leads to remote code execution.