RHSA-2025:8078HighCVSS 8.2
Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.15.3
🔗 CVE IDs covered (2)
📋 Description
CVE-2024-11831 — npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript CVE-2024-48949 — elliptic: Missing Validation in Elliptic's EDDSA Signature Verification
🔗 References (6)
- selfhttps://access.redhat.com/errata/RHSA-2025:8078
- externalhttps://docs.redhat.com/en/documentation/red_hat_openshift_pipelines
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://access.redhat.com/security/cve/cve-2024-11831
- externalhttps://access.redhat.com/security/cve/cve-2024-48949
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_8078.json