CVE-2023-4456
Summary: CVE-2023-4456 affects OpenShift OpenShift Logging LokiStack. The vulnerability arises because the cache key is the token, which is too broad, allowing a user with a token valid for one action to perform other actions as long as the original action’s authorization remains cached. Affected...