KubePi is a modern Kubernetes panel. A session fixation attack allows an attacker to hijack a legitimate user session, versions 1.6.3 and below are susceptible. A patch will be released in version 1.6.4.
CPE | Name | Operator | Version |
---|---|---|---|
go/github.com/kubeoperator/kubepi | lt | v1.6.4 |