Vulnerabilities > Redhat > Tectonic > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-09-24 CVE-2018-9090 Cross-site Scripting vulnerability in Redhat Tectonic
CoreOS Tectonic 1.7.x and 1.8.x before 1.8.7-tectonic.2 deploys the Grafana web application using default credentials (admin/admin) for the administrator account located at grafana-credentials secret.
network
low complexity
redhat CWE-79
6.1
6.1