What is RHSA-2020:3369?

RHSA-2020:3369 is a security advisory published by Red Hat Product Security with Medium severity. Red Hat Security Advisory: Red Hat OpenShift Service Mesh security update

Which CVE IDs does RHSA-2020:3369 cover?

RHSA-2020:3369 covers the following CVE IDs: CVE-2020-9283, CVE-2020-11023, CVE-2020-12666, CVE-2020-14040, CVE-2020-8203. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of RHSA-2020:3369?

RHSA-2020:3369 has a CVSS v3 base score of 7.5, published by Red Hat Product Security.

RHSA-2020:3369MediumCVSS 7.5

Red Hat Security Advisory: Red Hat OpenShift Service Mesh security update

Vendor

Red Hat Product Security

Published

August 6, 2020

Last Modified

June 15, 2026

🔗 CVE IDs covered (5)

CVE-2020-9283 →CVE-2020-11023 →CVE-2020-12666 →CVE-2020-14040 →CVE-2020-8203 →

📋 Description

CVE-2020-8203 — nodejs-lodash: prototype pollution in zipObjectDeep function CVE-2020-9283 — golang.org/x/crypto: Processing of crafted ssh-ed25519 public keys allows for panic CVE-2020-11023 — jquery: Untrusted code execution via tag in HTML passed to DOM manipulation methods CVE-2020-12666 — macaron: open redirect in the static handler CVE-2020-14040 — golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash

🔗 References (8)

selfhttps://access.redhat.com/errata/RHSA-2020:3369
externalhttps://access.redhat.com/security/updates/classification/#moderate
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1804533
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1850004
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1850034
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1853652
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1857412
selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3369.json