OpenShift ServiceMesh (OSSM) kiali is configured to delegate authorization to the OpenShift's RBAC user rights and the OpenID authentication strategy is not supported, hence it is marked `not affected`.
OpenShift ServiceMesh (OSSM) kiali is configured to delegate authorization to the OpenShift's RBAC user rights and the OpenID authentication strategy is not supported, hence it is marked not affected.
Additional Information
Bugzilla 1937171: CVE-2021-20278 kiali: authentication bypass when using the OpenID login strategy