CVE-2021-35206
- Source
- https://cve.org/CVERecord?id=CVE-2021-35206
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-35206.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2021-35206
- Published
- 2021-06-22T14:15:09.057Z
- Modified
- 2025-11-14T12:03:02.558675Z
- Severity
-
- 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Gitpod before 0.6.0 allows unvalidated redirects.
- References
-
- https://github.com/gitpod-io/gitpod/blob/main/CHANGELOG.md
- https://github.com/gitpod-io/gitpod/commit/8ca431f86ae3a6f9a17afcfed51cdd065fcff1a5
- https://github.com/gitpod-io/gitpod/compare/0.6.0-beta5...0.6.0
- https://github.com/gitpod-io/gitpod/pull/2879
- https://github.com/gitpod-io/gitpod/pull/2879#issuecomment-865662372
- https://github.com/gitpod-io/gitpod/pull/4567
- https://github.com/gitpod-io/gitpod/pull/4567/commits/f78b7d18e509e28e71b65bbd4dfd52c16ca57c18
- https://www.gitpod.io/changelog