Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-42264 (GCVE-0-2026-42264)
Vulnerability from cvelistv5 – Published: 2026-05-08 03:20 – Updated: 2026-07-10 12:05{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-42264",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-05-08T00:00:00+00:00",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-05-09T03:55:55.325Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"exploit"
],
"url": "https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj"
}
],
"title": "CISA ADP Vulnrichment"
},
{
"affected": [
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.10::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.11::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.11",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.9::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.1::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.2::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.3::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cryostat:4"
],
"defaultStatus": "affected",
"product": "Cryostat 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:migration_toolkit_applications:8"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Applications 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhmt:1"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Containers",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:network_observ_optr:1"
],
"defaultStatus": "affected",
"product": "Network Observability Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_pipelines:1"
],
"defaultStatus": "affected",
"product": "OpenShift Pipelines",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:2"
],
"defaultStatus": "affected",
"product": "OpenShift Service Mesh 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:red_hat_3scale_amp:2"
],
"defaultStatus": "affected",
"product": "Red Hat 3scale API Management Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:amq_broker:7"
],
"defaultStatus": "affected",
"product": "Red Hat AMQ Broker 7",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:apache_camel_hawtio:4"
],
"defaultStatus": "affected",
"product": "Red Hat build of Apache Camel - HawtIO 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:camel_spring_boot:4"
],
"defaultStatus": "affected",
"product": "Red Hat build of Apache Camel for Spring Boot 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_registry:2"
],
"defaultStatus": "affected",
"product": "Red Hat build of Apicurio Registry 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:apicurio_registry:3"
],
"defaultStatus": "affected",
"product": "Red Hat build of Apicurio Registry 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:jboss_data_grid:8"
],
"defaultStatus": "affected",
"product": "Red Hat Data Grid 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux_ai:3"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AI (RHEL AI) 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:jboss_fuse:7"
],
"defaultStatus": "affected",
"product": "Red Hat Fuse 7",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift AI (RHOAI)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_devspaces:3"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Dev Spaces",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:jboss_enterprise_bpms_platform:7"
],
"defaultStatus": "affected",
"product": "Red Hat Process Automation 7",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:trusted_profile_analyzer:2"
],
"defaultStatus": "affected",
"product": "Red Hat Trusted Profile Analyzer",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_portal:2"
],
"defaultStatus": "affected",
"product": "Self-service automation portal 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:amq_streams:2"
],
"defaultStatus": "affected",
"product": "streams for Apache Kafka 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:gatekeeper:3"
],
"defaultStatus": "unaffected",
"product": "Gatekeeper 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine"
],
"defaultStatus": "unaffected",
"product": "Multicluster Engine for Kubernetes",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3"
],
"defaultStatus": "unaffected",
"product": "OpenShift Service Mesh 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2"
],
"defaultStatus": "unaffected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhdh:1"
],
"defaultStatus": "unaffected",
"product": "Red Hat Developer Hub",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:discovery:2::el9"
],
"defaultStatus": "unaffected",
"product": "Red Hat Discovery 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "unaffected",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3"
],
"defaultStatus": "unaffected",
"product": "Red Hat Quay 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:trusted_artifact_signer:1"
],
"defaultStatus": "unaffected",
"product": "Red Hat Trusted Artifact Signer",
"vendor": "Red Hat"
}
],
"datePublic": "2026-05-08T03:20:24.248Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as prototype pollution, allows an attacker to inject malicious properties into core JavaScript objects. When another component in the same application environment is compromised and pollutes the system\u0027s object prototype, Axios can unknowingly use these manipulated values in its outbound network requests. This could lead to the disclosure of sensitive information or the alteration of network communications, compromising data confidentiality and integrity."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-915",
"description": "Improperly Controlled Modification of Dynamically-Determined Object Attributes",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-10T12:05:15.975Z",
"orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
"shortName": "redhat-SADP"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-42264"
},
{
"name": "RHBZ#2467927",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467927"
},
{
"tags": [
"x_sadp-csaf-vex"
],
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-42264.json"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20889"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20938"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:37297"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:33173"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:37288"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:37287"
}
],
"solutions": [
{
"lang": "en",
"value": "RHSA-2026:20889: Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"lang": "en",
"value": "RHSA-2026:36207: Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"lang": "en",
"value": "RHSA-2026:20938: Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"lang": "en",
"value": "RHSA-2026:37297: Red Hat OpenShift Service Mesh 3.1"
},
{
"lang": "en",
"value": "RHSA-2026:33173: Red Hat OpenShift Service Mesh 3.2"
},
{
"lang": "en",
"value": "RHSA-2026:37288: Red Hat OpenShift Service Mesh 3.3"
},
{
"lang": "en",
"value": "RHSA-2026:37287: Red Hat OpenShift Service Mesh 3"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-05-08T04:02:21.039Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-05-08T03:20:24.248Z",
"value": "Made public."
}
],
"title": "axios: Axios: Prototype pollution allows information disclosure and request manipulation",
"workarounds": [
{
"lang": "en",
"value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability."
}
],
"x_adpType": "supplier",
"x_generator": {
"engine": "sadp-cli 1.0.0"
}
}
],
"cna": {
"affected": [
{
"product": "axios",
"vendor": "axios",
"versions": [
{
"status": "affected",
"version": "\u003e= 1.0.0, \u003c 1.15.2"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Axios is a promise based HTTP client for the browser and Node.js. From version 1.0.0 to before version 1.15.2, fFive config properties (auth, baseURL, socketPath, beforeRedirect, and insecureHTTPParser) in the HTTP adapter are read via direct property access without hasOwnProperty guards, making them exploitable as prototype pollution gadgets. When Object.prototype is polluted by another dependency in the same process, axios silently picks up these polluted values on every outbound HTTP request. This issue has been patched in version 1.15.2."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-1321",
"description": "CWE-1321: Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-08T03:20:24.248Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj"
},
{
"name": "https://github.com/axios/axios/pull/10779",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/axios/axios/pull/10779"
},
{
"name": "https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa"
},
{
"name": "https://github.com/axios/axios/releases/tag/v1.15.2",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/axios/axios/releases/tag/v1.15.2"
}
],
"source": {
"advisory": "GHSA-q8qp-cvcw-x6jj",
"discovery": "UNKNOWN"
},
"title": "Axios: Prototype pollution read-side gadgets in HTTP adapter allow credential injection and request hijacking"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-42264",
"datePublished": "2026-05-08T03:20:24.248Z",
"dateReserved": "2026-04-26T11:53:27.706Z",
"dateUpdated": "2026-07-10T12:05:15.975Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-42264",
"date": "2026-07-10",
"epss": "0.00549",
"percentile": "0.42067"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-42264\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2026-05-08T04:16:20.313\",\"lastModified\":\"2026-07-10T12:16:52.660\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Axios is a promise based HTTP client for the browser and Node.js. From version 1.0.0 to before version 1.15.2, fFive config properties (auth, baseURL, socketPath, beforeRedirect, and insecureHTTPParser) in the HTTP adapter are read via direct property access without hasOwnProperty guards, making them exploitable as prototype pollution gadgets. When Object.prototype is polluted by another dependency in the same process, axios silently picks up these polluted values on every outbound HTTP request. This issue has been patched in version 1.15.2.\"}],\"affected\":[{\"source\":\"security-advisories@github.com\",\"affectedData\":[{\"vendor\":\"axios\",\"product\":\"axios\",\"versions\":[{\"version\":\"\u003e= 1.0.0, \u003c 1.15.2\",\"status\":\"affected\"}]}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"affectedData\":[{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.10::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.11\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.11::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.2::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Cryostat 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cryostat:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Applications 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:migration_toolkit_applications:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Containers\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhmt:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Network Observability Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:network_observ_optr:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Pipelines\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_pipelines:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Service Mesh 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat 3scale API Management Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:red_hat_3scale_amp:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat AMQ Broker 7\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:amq_broker:7\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat build of Apache Camel - HawtIO 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:apache_camel_hawtio:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat build of Apache Camel for Spring Boot 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:camel_spring_boot:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat build of Apicurio Registry 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_registry:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat build of Apicurio Registry 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:apicurio_registry:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Data Grid 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:jboss_data_grid:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AI (RHEL AI) 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux_ai:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Fuse 7\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:jboss_fuse:7\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI (RHOAI)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Dev Spaces\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_devspaces:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Virtualization 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:container_native_virtualization:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Process Automation 7\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:jboss_enterprise_bpms_platform:7\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Trusted Profile Analyzer\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:trusted_profile_analyzer:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Self-service automation portal 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_portal:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"streams for Apache Kafka 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:amq_streams:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Gatekeeper 3\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:gatekeeper:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Engine for Kubernetes\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Service Mesh 3\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:acm:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Developer Hub\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:rhdh:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Discovery 2\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:discovery:2::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 8\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 9\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:quay:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Trusted Artifact Signer\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:trusted_artifact_signer:1\"]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N\",\"baseScore\":7.4,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.2,\"impactScore\":5.2},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N\",\"baseScore\":9.1,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":5.2},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N\",\"baseScore\":7.4,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.2,\"impactScore\":5.2}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-05-08T00:00:00+00:00\",\"id\":\"CVE-2026-42264\",\"options\":[{\"exploitation\":\"poc\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"total\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-1321\"}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-915\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:axios:axios:*:*:*:*:*:node.js:*:*\",\"versionStartIncluding\":\"1.0.0\",\"versionEndExcluding\":\"1.15.2\",\"matchCriteriaId\":\"6435BA85-B55D-4D8B-AEB8-1CE53258A1DD\"}]}]}],\"references\":[{\"url\":\"https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/axios/axios/pull/10779\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/axios/axios/releases/tag/v1.15.2\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Product\",\"Release Notes\"]},{\"url\":\"https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Exploit\",\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20889\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20938\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:33173\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:36207\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:37287\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:37288\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:37297\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2026-42264\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2467927\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"Exploit\",\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-42264.json\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"}]}}",
"redhat_vex": {
"aggregate_severity": "Important",
"current_release_date": "2026-07-09T22:53:01+00:00",
"cve": "CVE-2026-42264",
"id": "CVE-2026-42264",
"initial_release_date": "2026-05-08T03:20:24.248000+00:00",
"product_status:fixed": "44",
"product_status:known_affected": "51",
"product_status:known_not_affected": "172",
"source": "Red Hat CSAF VEX",
"status": "final",
"title": "axios: Axios: Prototype pollution allows information disclosure and request manipulation",
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-42264.json",
"version": "3"
},
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"axios: Axios: Prototype pollution allows information disclosure and request manipulation\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.4, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.10::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.10\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.11::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.11\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.1::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.1\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.2::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.3::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3.3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3.0::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Service Mesh 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:cryostat:4\"], \"vendor\": \"Red Hat\", \"product\": \"Cryostat 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:migration_toolkit_applications:8\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Applications 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhmt:1\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Containers\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:network_observ_optr:1\"], \"vendor\": \"Red Hat\", \"product\": \"Network Observability Operator\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_pipelines:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Pipelines\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:2\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Service Mesh 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:red_hat_3scale_amp:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat 3scale API Management Platform 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:amq_broker:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat AMQ Broker 7\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:apache_camel_hawtio:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat build of Apache Camel - HawtIO 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:camel_spring_boot:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat build of Apache Camel for Spring Boot 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:service_registry:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat build of Apicurio Registry 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:apicurio_registry:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat build of Apicurio Registry 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:jboss_data_grid:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Data Grid 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux_ai:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux AI (RHEL AI) 3\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:jboss_fuse:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Fuse 7\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_ai\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift AI (RHOAI)\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_devspaces:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Dev Spaces\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:jboss_enterprise_bpms_platform:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Process Automation 7\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:trusted_profile_analyzer:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Trusted Profile Analyzer\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_portal:2\"], \"vendor\": \"Red Hat\", \"product\": \"Self-service automation portal 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:amq_streams:2\"], \"vendor\": \"Red Hat\", \"product\": \"streams for Apache Kafka 2\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:gatekeeper:3\"], \"vendor\": \"Red Hat\", \"product\": \"Gatekeeper 3\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Engine for Kubernetes\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:service_mesh:3\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Service Mesh 3\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:acm:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Management for Kubernetes 2\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:rhdh:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Developer Hub\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:discovery:2::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Discovery 2\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:trusted_artifact_signer:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Trusted Artifact Signer\", \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2026-05-08T04:02:21.039Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2026-05-08T03:20:24.248Z\", \"value\": \"Made public.\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"RHSA-2026:20889: Red Hat Advanced Cluster Security for Kubernetes 4.10\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:36207: Red Hat Advanced Cluster Security for Kubernetes 4.11\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:20938: Red Hat Advanced Cluster Security for Kubernetes 4.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:37297: Red Hat OpenShift Service Mesh 3.1\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:33173: Red Hat OpenShift Service Mesh 3.2\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:37288: Red Hat OpenShift Service Mesh 3.3\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:37287: Red Hat OpenShift Service Mesh 3\"}], \"x_adpType\": \"supplier\", \"datePublic\": \"2026-05-08T03:20:24.248Z\", \"references\": [{\"url\": \"https://access.redhat.com/security/cve/CVE-2026-42264\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2467927\", \"name\": \"RHBZ#2467927\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-42264.json\", \"tags\": [\"x_sadp-csaf-vex\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20889\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:36207\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:20938\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:37297\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:33173\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:37288\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:37287\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.\"}], \"x_generator\": {\"engine\": \"sadp-cli 1.0.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as prototype pollution, allows an attacker to inject malicious properties into core JavaScript objects. When another component in the same application environment is compromised and pollutes the system\u0027s object prototype, Axios can unknowingly use these manipulated values in its outbound network requests. This could lead to the disclosure of sensitive information or the alteration of network communications, compromising data confidentiality and integrity.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-915\", \"description\": \"Improperly Controlled Modification of Dynamically-Determined Object Attributes\"}]}], \"providerMetadata\": {\"orgId\": \"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\", \"shortName\": \"redhat-SADP\", \"dateUpdated\": \"2026-07-10T12:05:15.975Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-42264\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-05-08T14:10:24.211928Z\"}}}], \"references\": [{\"url\": \"https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj\", \"tags\": [\"exploit\"]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-05-08T14:10:18.186Z\"}}], \"cna\": {\"title\": \"Axios: Prototype pollution read-side gadgets in HTTP adapter allow credential injection and request hijacking\", \"source\": {\"advisory\": \"GHSA-q8qp-cvcw-x6jj\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.4, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"axios\", \"product\": \"axios\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003e= 1.0.0, \u003c 1.15.2\"}]}], \"references\": [{\"url\": \"https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj\", \"name\": \"https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/axios/axios/pull/10779\", \"name\": \"https://github.com/axios/axios/pull/10779\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa\", \"name\": \"https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/axios/axios/releases/tag/v1.15.2\", \"name\": \"https://github.com/axios/axios/releases/tag/v1.15.2\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Axios is a promise based HTTP client for the browser and Node.js. From version 1.0.0 to before version 1.15.2, fFive config properties (auth, baseURL, socketPath, beforeRedirect, and insecureHTTPParser) in the HTTP adapter are read via direct property access without hasOwnProperty guards, making them exploitable as prototype pollution gadgets. When Object.prototype is polluted by another dependency in the same process, axios silently picks up these polluted values on every outbound HTTP request. This issue has been patched in version 1.15.2.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-1321\", \"description\": \"CWE-1321: Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2026-05-08T03:20:24.248Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-42264\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-07-10T12:05:15.975Z\", \"dateReserved\": \"2026-04-26T11:53:27.706Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2026-05-08T03:20:24.248Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2026:36207
Vulnerability from csaf_redhat - Published: 2026-07-07 11:09 - Updated: 2026-07-10 19:40A flaw was found in Red Hat Advanced Cluster Security for Kubernetes (RHACS). Central does not limit the depth of GraphQL queries served on the authenticated GraphQL API. An authenticated user with a valid API token can send deeply nested queries that cause excessive resource consumption in Central, resulting in a denial of service for the management plane.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/net/html. A remote attacker could exploit this vulnerability by providing specially crafted HTML. When this arbitrary HTML is parsed and rendered, it can result in an unexpected HTML tree, bypassing input sanitization. This can be leveraged to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution in applications that use the affected component.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
A flaw was found in golang.org/x/net/html. When arbitrary HTML is parsed and then rendered, it can result in an unexpected HTML tree. This allows an attacker to bypass HTML sanitization mechanisms, leading to Cross-Site Scripting (XSS) attacks in applications. Such attacks can result in information disclosure or arbitrary code execution.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection's read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as prototype pollution, allows an attacker to inject malicious properties into core JavaScript objects. When another component in the same application environment is compromised and pollutes the system's object prototype, Axios can unknowingly use these manipulated values in its outbound network requests. This could lead to the disclosure of sensitive information or the alteration of network communications, compromising data confidentiality and integrity.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Workaround
|
A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface (CRI) plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands on the host system through a plugin that processes these unvalidated labels. The primary impact is host-root command execution, allowing unauthorized control over the underlying system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS), which typically include new features, bug fixes, and/or\nsecurity patches.",
"title": "Topic"
},
{
"category": "general",
"text": "See the release notes (link in the references section) for a\ndescription of the fixes and enhancements in this particular release.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:36207",
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25681",
"url": "https://access.redhat.com/security/cve/CVE-2026-25681"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27136",
"url": "https://access.redhat.com/security/cve/CVE-2026-27136"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33811",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39821",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39828",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39829",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39830",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-39835",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42264",
"url": "https://access.redhat.com/security/cve/CVE-2026-42264"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-46595",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-53488",
"url": "https://access.redhat.com/security/cve/CVE-2026-53488"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9165",
"url": "https://access.redhat.com/security/cve/CVE-2026-9165"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.11/html-single/release_notes/index#about-this-release-4111_release-notes-411",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.11/html-single/release_notes/index#about-this-release-4111_release-notes-411"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_36207.json"
}
],
"title": "Red Hat Security Advisory: RHACS 4.11.1 security and bug fix update",
"tracking": {
"current_release_date": "2026-07-10T19:40:44+00:00",
"generator": {
"date": "2026-07-10T19:40:44+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:36207",
"initial_release_date": "2026-07-07T11:09:24+00:00",
"revision_history": [
{
"date": "2026-07-07T11:09:24+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-07T11:09:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-10T19:40:44+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product": {
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.11::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel9@sha256%3Aa67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel9@sha256%3A0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9\u0026tag=1782122242"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-fact-rhel9@sha256%3A2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9\u0026tag=1782109225"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel9@sha256%3A5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel9-operator@sha256%3Ab9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256%3A2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel9@sha256%3A93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel9@sha256%3A8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel9@sha256%3A39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel9@sha256%3A1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel9@sha256%3A207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel9@sha256%3Aee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel9@sha256%3A4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9\u0026tag=1783352589"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel9@sha256%3A70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel9@sha256%3Abc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9\u0026tag=1782122242"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-fact-rhel9@sha256%3A1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9\u0026tag=1782109225"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel9@sha256%3A41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel9-operator@sha256%3A91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel9@sha256%3Ad50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel9@sha256%3A276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel9@sha256%3Aab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel9@sha256%3A3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel9@sha256%3A3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel9@sha256%3Ab26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel9@sha256%3A06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9\u0026tag=1783352589"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel9@sha256%3A93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel9@sha256%3Af5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9\u0026tag=1782122242"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel9@sha256%3A55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel9-operator@sha256%3A307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel9@sha256%3Aa8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel9@sha256%3A5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel9@sha256%3A7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel9@sha256%3A58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel9@sha256%3A242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel9@sha256%3A0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel9@sha256%3A175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9\u0026tag=1783352589"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel9@sha256%3Afd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel9@sha256%3A063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9\u0026tag=1782122242"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel9@sha256%3Ad785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel9-operator@sha256%3Afbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel9@sha256%3Aeab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel9@sha256%3Abf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel9@sha256%3A69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel9@sha256%3A973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel9@sha256%3A9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9\u0026tag=1782925137"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel9@sha256%3Ae7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9\u0026tag=1783352589"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel9@sha256%3A7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9\u0026tag=1783352589"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.11",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.11"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Moritz Clasmeier"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2026-9165",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2026-05-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480505"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Red Hat Advanced Cluster Security for Kubernetes (RHACS). Central does not limit the depth of GraphQL queries served on the authenticated GraphQL API. An authenticated user with a valid API token can send deeply nested queries that cause excessive resource consumption in Central, resulting in a denial of service for the management plane.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "stackrox: stackrox: Unbounded GraphQL query depth allows authenticated denial of service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security is aware of this issue affecting RHACS Central. This flaw allows an authenticated user to reduce availability of the Central management component. Red Hat is not aware of malicious exploitation of this issue outside of coordinated testing. Updates addressing this issue will be released according to the RHACS support lifecycle. Refer to the associated errata when available for affected versions and update instructions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9165"
},
{
"category": "external",
"summary": "RHBZ#2480505",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480505"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9165",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9165"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9165",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9165"
}
],
"release_date": "2026-07-06T08:38:30.568000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "There is no complete mitigation other than installing the update once\navailable.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "stackrox: stackrox: Unbounded GraphQL query depth allows authenticated denial of service"
},
{
"cve": "CVE-2026-25681",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-05-22T16:01:08.177603+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480761"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. A remote attacker could exploit this vulnerability by providing specially crafted HTML. When this arbitrary HTML is parsed and rendered, it can result in an unexpected HTML tree, bypassing input sanitization. This can be leveraged to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution in applications that use the affected component.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: golang.org/x/net/html: Arbitrary code execution via Cross-Site Scripting",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in `golang.org/x/net/html` could enable remote attackers to execute Cross-Site Scripting (XSS) attacks, potentially leading to arbitrary code execution. The flaw allows specially crafted HTML to bypass input sanitization during parsing and rendering. Red Hat products are affected if they process untrusted HTML content using the vulnerable component without additional output encoding or robust content security policies.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25681"
},
{
"category": "external",
"summary": "RHBZ#2480761",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480761"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25681",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25681"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25681",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25681"
},
{
"category": "external",
"summary": "https://go.dev/cl/781703",
"url": "https://go.dev/cl/781703"
},
{
"category": "external",
"summary": "https://go.dev/issue/79574",
"url": "https://go.dev/issue/79574"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5029",
"url": "https://pkg.go.dev/vuln/GO-2026-5029"
}
],
"release_date": "2026-05-22T15:01:21.975000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "To mitigate this flaw, applications processing untrusted HTML input must implement strict input sanitization and ensure all output is properly encoded before rendering. Deploying a comprehensive Content Security Policy (CSP) can restrict script execution, further reducing the attack surface. Administrators should review application configurations to ensure adequate protection against XSS.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: golang.org/x/net/html: Arbitrary code execution via Cross-Site Scripting"
},
{
"cve": "CVE-2026-27136",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-05-22T16:00:56.609820+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480757"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. When arbitrary HTML is parsed and then rendered, it can result in an unexpected HTML tree. This allows an attacker to bypass HTML sanitization mechanisms, leading to Cross-Site Scripting (XSS) attacks in applications. Such attacks can result in information disclosure or arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: golang: golang.org/x/net/html: Cross-Site Scripting via HTML parsing bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in `golang.org/x/net/html` is rated as Important. It allows for Cross-Site Scripting (XSS) attacks by enabling an attacker to bypass HTML sanitization mechanisms when arbitrary HTML is parsed and rendered. This can lead to information disclosure or arbitrary code execution in affected applications. Exploitation typically requires user interaction, where a user processes specially crafted malicious HTML content.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27136"
},
{
"category": "external",
"summary": "RHBZ#2480757",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480757"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27136",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27136"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27136",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27136"
},
{
"category": "external",
"summary": "https://go.dev/cl/781685",
"url": "https://go.dev/cl/781685"
},
{
"category": "external",
"summary": "https://go.dev/issue/79575",
"url": "https://go.dev/issue/79575"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5030",
"url": "https://pkg.go.dev/vuln/GO-2026-5030"
}
],
"release_date": "2026-05-22T15:01:22.111000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: golang: golang.org/x/net/html: Cross-Site Scripting via HTML parsing bypass"
},
{
"cve": "CVE-2026-33811",
"cwe": {
"id": "CWE-1341",
"name": "Multiple Releases of Same Resource or Handle"
},
"discovery_date": "2026-05-07T20:01:34.913869+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `net` package of Go (golang), specifically when using the `LookupCNAME` function with the `cgo` DNS resolver. A remote attacker could exploit this by providing a very long Canonical Name (CNAME) response. This can trigger a double-free of C memory, leading to a crash and a Denial of Service (DoS) for the affected application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go `net` package, affecting applications configured to use the `cgo` DNS resolver. A remote attacker could trigger a double-free memory error by providing a very long CNAME response, leading to a crash of the vulnerable application and impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33811"
},
{
"category": "external",
"summary": "RHBZ#2467822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33811",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33811"
},
{
"category": "external",
"summary": "https://go.dev/cl/767860",
"url": "https://go.dev/cl/767860"
},
{
"category": "external",
"summary": "https://go.dev/issue/78803",
"url": "https://go.dev/issue/78803"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M",
"url": "https://groups.google.com/g/golang-announce/c/qcCIEXso47M"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4981",
"url": "https://pkg.go.dev/vuln/GO-2026-4981"
}
],
"release_date": "2026-05-07T19:41:19.285000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications can be configured to use the pure Go DNS resolver instead of the `cgo` DNS resolver. This can be achieved by setting the `GODEBUG` environment variable to `netdns=go`. For example, to run a Go application with this mitigation: `GODEBUG=netdns=go /path/to/your/go/application`. This change may require restarting affected applications or services to take effect. Users should verify that this change does not negatively impact DNS resolution for their specific application environment.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME"
},
{
"cve": "CVE-2026-39821",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-05-22T16:00:52.844126+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480756"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/idna. ToASCII and ToUnicode incorrectly accept Punycode-encoded labels that decode to an ASCII-only hostname (for example, xn--example-.com returns example.com instead of an error). Applications that validate the ASCII form then convert to Unicode may grant access to a restricted hostname the ASCII check would have rejected.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/net/idna is vulnerable to privilege escalation through incorrect Punycode label handling in ToASCII and ToUnicode. An attacker who can supply a Punycode hostname that passes an ASCII-only authorization check may have it normalized to a restricted ASCII name the application intended to block. Red Hat exposure is broad across products shipping the Go toolchain or bundling golang.org/x/net, including RHEL and RHEL-AI golang RPMs, hummingbird Go runtimes, OpenShift and ODF container builds, and Ceph/OpenShift components compiled against affected x/net versions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "RHBZ#2480756",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480756"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39821",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39821"
},
{
"category": "external",
"summary": "https://go.dev/cl/767220",
"url": "https://go.dev/cl/767220"
},
{
"category": "external",
"summary": "https://go.dev/issue/78760",
"url": "https://go.dev/issue/78760"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8",
"url": "https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5026",
"url": "https://pkg.go.dev/vuln/GO-2026-5026"
}
],
"release_date": "2026-05-22T15:01:21.462000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/net release that includes the idna correction, via updated golang or dependent package rebuilds.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing"
},
{
"cve": "CVE-2026-39828",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"discovery_date": "2026-05-22T04:01:46.775641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote attacker could exploit this vulnerability when an SSH server authentication callback returned a PartialSuccessError with non-nil permissions. This flaw caused these permissions to be silently discarded, potentially bypassing certificate restrictions, such as a force-command, after a second authentication factor succeeded. This could lead to unauthorized command execution or access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important security flaw in the `golang.org/x/crypto/ssh` library. When an SSH server utilizing this library is configured with specific authentication callbacks that return a `PartialSuccessError` with non-nil permissions, an attacker could bypass intended certificate restrictions, such as `force-command`. This bypass could lead to unauthorized command execution or access on affected Red Hat systems configured with multi-factor authentication and certificate-based access controls.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "RHBZ#2480687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39828",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39828"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39828"
},
{
"category": "external",
"summary": "https://go.dev/cl/781621",
"url": "https://go.dev/cl/781621"
},
{
"category": "external",
"summary": "https://go.dev/issue/79562",
"url": "https://go.dev/issue/79562"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5014",
"url": "https://pkg.go.dev/vuln/GO-2026-5014"
}
],
"release_date": "2026-05-22T02:31:26.883000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions"
},
{
"cve": "CVE-2026-39829",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"discovery_date": "2026-05-22T04:01:30.092249+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480681"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. The RSA and DSA public key parsers in the affected component did not enforce size limits on key parameters. This vulnerability allows an unauthenticated client to provide a crafted public key with an excessively large modulus or DSA parameter during public key authentication. Successful exploitation could lead to a denial of service (DoS) due to prolonged CPU consumption during signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in golang.org/x/crypto/ssh is rated as Important. An unauthenticated remote attacker could trigger a denial of service by providing a specially crafted public key with excessively large parameters during SSH public key authentication. This could lead to prolonged CPU consumption on the server, impacting service availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "RHBZ#2480681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480681"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39829",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39829"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39829"
},
{
"category": "external",
"summary": "https://go.dev/cl/781641",
"url": "https://go.dev/cl/781641"
},
{
"category": "external",
"summary": "https://go.dev/cl/781661",
"url": "https://go.dev/cl/781661"
},
{
"category": "external",
"summary": "https://go.dev/issue/79565",
"url": "https://go.dev/issue/79565"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5018",
"url": "https://pkg.go.dev/vuln/GO-2026-5018"
}
],
"release_date": "2026-05-22T02:31:27.324000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters"
},
{
"cve": "CVE-2026-39830",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-05-22T04:01:38.517202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. A remote malicious SSH peer can exploit this by sending unsolicited global request responses, which fills an internal buffer and blocks the connection\u0027s read loop. This prevents the associated resources from being released, leading to a resource leak per connection. The consequence is a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh`. A remote, unauthenticated attacker can exploit this vulnerability by sending unsolicited global request responses to an affected SSH server, leading to resource exhaustion and a denial of service. The impact is considered Important due to the potential for unauthenticated remote disruption of services utilizing the vulnerable SSH library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "RHBZ#2480684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39830",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39830"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39830"
},
{
"category": "external",
"summary": "https://go.dev/cl/781640",
"url": "https://go.dev/cl/781640"
},
{
"category": "external",
"summary": "https://go.dev/cl/781664",
"url": "https://go.dev/cl/781664"
},
{
"category": "external",
"summary": "https://go.dev/issue/79564",
"url": "https://go.dev/issue/79564"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5017",
"url": "https://pkg.go.dev/vuln/GO-2026-5017"
}
],
"release_date": "2026-05-22T02:31:27.208000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "To mitigate this denial of service vulnerability, restrict network access to any service that utilizes the `golang.org/x/crypto/ssh` library and is exposed to untrusted networks. Implement firewall rules to allow connections only from trusted hosts or networks. This action limits the ability of malicious peers to send unsolicited global request responses. A restart of the affected service may be necessary for the new network rules to be applied effectively.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses"
},
{
"cve": "CVE-2026-39835",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2026-05-22T04:01:27.279943+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480680"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. SSH servers configured to use CertChecker as a public key callback, without explicitly setting IsUserAuthority or IsHostAuthority, are vulnerable. A remote attacker can exploit this by presenting a specially crafted certificate, causing the server to panic and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service flaw in `golang.org/x/crypto/ssh` affecting SSH servers that utilize `CertChecker` as a public key callback without explicitly configuring `IsUserAuthority` or `IsHostAuthority`. A remote, unauthenticated attacker can trigger a server panic by presenting a specially crafted certificate, leading to service disruption. Exploitation requires a specific, non-default configuration of the `CertChecker`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "RHBZ#2480680",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480680"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-39835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-39835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39835"
},
{
"category": "external",
"summary": "https://go.dev/cl/781660",
"url": "https://go.dev/cl/781660"
},
{
"category": "external",
"summary": "https://go.dev/issue/79563",
"url": "https://go.dev/issue/79563"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5015",
"url": "https://pkg.go.dev/vuln/GO-2026-5015"
}
],
"release_date": "2026-05-22T02:31:26.982000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang: golang.org/x/crypto/ssh: Denial of Service via crafted SSH certificate"
},
{
"cve": "CVE-2026-42264",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-05-08T04:02:21.039378+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467927"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as prototype pollution, allows an attacker to inject malicious properties into core JavaScript objects. When another component in the same application environment is compromised and pollutes the system\u0027s object prototype, Axios can unknowingly use these manipulated values in its outbound network requests. This could lead to the disclosure of sensitive information or the alteration of network communications, compromising data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Prototype pollution allows information disclosure and request manipulation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important prototype pollution flaw in Axios could result in information disclosure and network request manipulation. The vulnerability occurs when a co-located dependency in the application environment successfully pollutes the JavaScript `Object.prototype`. Under these conditions, Axios may unknowingly incorporate the manipulated properties into its outbound HTTP requests, potentially compromising data confidentiality and integrity. Exploitation is contingent on a prior successful prototype pollution attack from another component.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42264"
},
{
"category": "external",
"summary": "RHBZ#2467927",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467927"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42264",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42264"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42264",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42264"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa",
"url": "https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/pull/10779",
"url": "https://github.com/axios/axios/pull/10779"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases/tag/v1.15.2",
"url": "https://github.com/axios/axios/releases/tag/v1.15.2"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj",
"url": "https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj"
}
],
"release_date": "2026-05-08T03:20:24.248000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Prototype pollution allows information disclosure and request manipulation"
},
{
"cve": "CVE-2026-46595",
"cwe": {
"id": "CWE-303",
"name": "Incorrect Implementation of Authentication Algorithm"
},
"discovery_date": "2026-05-22T04:01:52.215134+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. Source-address validation can be skipped when an SSH server configuration uses an authentication callback type other than public key, allowing authorization bypass in misconfigured servers. This is a follow-on to incomplete coverage from the CVE-2024-45337 fix.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "golang.org/x/crypto/ssh is vulnerable to authorization bypass when SSH server configurations rely on source-address validation alongside non-public-key authentication callbacks. An attacker with low privileges who can authenticate through such a callback path may bypass intended source-address restrictions and gain unauthorized SSH access. Red Hat impact sits in services built with affected x/crypto/ssh, including RHEL golang streams, hummingbird Go toolchains, RHACM/MCE agents, and OpenShift or Ceph components that embed Go SSH servers with mixed callback types.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "RHBZ#2480689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-46595",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-46595"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46595"
},
{
"category": "external",
"summary": "https://go.dev/cl/781642",
"url": "https://go.dev/cl/781642"
},
{
"category": "external",
"summary": "https://go.dev/issue/79570",
"url": "https://go.dev/issue/79570"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI",
"url": "https://groups.google.com/g/golang-announce/c/a082jnz-LvI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-5023",
"url": "https://pkg.go.dev/vuln/GO-2026-5023"
}
],
"release_date": "2026-05-22T02:31:27.894000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Upgrade to a fixed golang.org/x/crypto/ssh release via updated golang or package rebuilds. Ensure SSH servers use supported public-key callback configurations with source-address validation as intended.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation"
},
{
"cve": "CVE-2026-53488",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2026-07-01T02:01:09.589815+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2495815"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface (CRI) plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands on the host system through a plugin that processes these unvalidated labels. The primary impact is host-root command execution, allowing unauthorized control over the underlying system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/containerd/containerd: containerd: Host-root command execution via unvalidated image config labels in CRI plugin",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A flaw was found in containerd where the CRI plugin propagates labels from an image configuration (LABEL instruction in a Dockerfile) to a container without validation. This may result in executing an arbitrary command on the host via a plugin that consumes container labels for operations, such as the restart-monitor binary:// logger. An attacker who can cause a crafted container image to be pulled and run can achieve host-level code execution.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-53488"
},
{
"category": "external",
"summary": "RHBZ#2495815",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2495815"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-53488",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53488"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-53488",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-53488"
},
{
"category": "external",
"summary": "https://github.com/containerd/containerd/security/advisories/GHSA-xhf5-7wjv-pqxp",
"url": "https://github.com/containerd/containerd/security/advisories/GHSA-xhf5-7wjv-pqxp"
}
],
"release_date": "2026-07-01T00:11:20.610000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-07T11:09:24+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:36207"
},
{
"category": "workaround",
"details": "Restrict container image pulls to trusted registries using admission policies or image signature verification. Where containerd is used as the container runtime, disable or restrict the binary:// logger URI scheme in the containerd configuration to prevent the label-to-logger attack path.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:70dbc4b2fd02c6006d01fd31277c79e1152a04e678316853cc9650004a88c8f6_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:93e15662b963e2da7c1ca4ad5c47df2a49d6df5857c9cb44157c88a1eb14c99c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:a67c68062eb3fe78067524fbef175c6f4dcb2876138fbafc17c8f5aef930ffb5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel9@sha256:fd0e68ad1f3d790efc1a7637a63668df741a3195d86260291ca7ff85fe72bed2_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:063b28090fce858259efe584b09d7329b766ae461926e8d78f6fac1cf6738055_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:0964f3f379136662c8c3817b2a7d3b787808fab2b742cd7ea53d5f6c2248d1c9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:bc05850aa1cefea5105198c9af51c64f2b255df1c1ccbb30f3c12a2d4c549f1b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel9@sha256:f5a7d92dc9cb85b9a4d70d871ab1748e80435e9ddba74ba3818e92ec57f7cf78_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:1ba125d01f712a5fb85db400a0cd9d2240c36529d7d0c8e925acfd3c45845bec_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-fact-rhel9@sha256:2801fe77997c4325f9d1e154eae8c63a4fc808e2c31c773a60c47d63268b1bbc_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:41fd9a9bc849f2c7c6439532bd537c34384b88be30b37629c5e271e0e4be7db4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:55d7e178435c881a57a88aa6747cd6dedd3c3a512014d0509919dceef13b2946_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:5fef4993574a20a48a9f93e5f07967d13b7b26e8f7e83e2222ea5bbe1f500409_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel9@sha256:d785df86cfd97ff76e6d9426b247543faa91efaeb950f6b2e6b97f9e67624043_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:2fe25a8ac9612f29a625969bb25d24938abb298e9a9e1e79fb3aa34c6a0e5f76_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:307402d2c8c46b74c1a855dad9fdd9f4013c057256513b4d1d58ac980ed8d2e0_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:91710d1c3f67e096b682cb6fa118c70d40bbbc36e3293aa3bea9890775d70236_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:b9d25811da46af4766d41e7543cc54a2820b2b9a4c190585e34166620cf070f7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-rhel9-operator@sha256:fbd34cb7d74c9e699337157c4c26bc714b541e00645948cccedb5e7afb258003_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:93dc86f2358079474a9f5ce67e0e6430c2cdbe8a01155be8020165fce2e73f2b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:a8c0e823eb62db8ff39de33d6401670e2f65cac8e640b64a9ffeae8ecc0c12bc_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:d50e48a12a217855c373b865df663f50355e4f76fba33de65e50bdc333112c4a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel9@sha256:eab9c2e2d1ea614bf898c0cba75223f7960a61b7d2315815d6410e3c4f62d7f8_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:39470e0a40255d8d0bcfb6a3e82d77bfd57fdbff5452179f69eed7cff417a103_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:69531d80a6af41db1c28f54a8acfea85594fca34c754c8049e75b331e998a973_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:7a6b045c058be14ab95043bc3c6680bba5ab54a060ae45dbc7e6e8896fb093d8_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel9@sha256:ab57133805270163a3cb99e972b183e8613a6fbfcc943eae5b542d923d572244_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:1c03e0ce9e3b48c8c0f2a9c65dfe3d9b344cd82ac776dc210ef23b91745b0682_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:3783cfecf52a9c532c4e64ed93078581c8ca200efda661efc63ae1fac4391d57_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:58a181deb194766402e32ef43375e2e51208b229c8c97674bda5a6fcc768b8fd_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel9@sha256:973cb71559d8d346c3e0840a6865afda1de53017dcd9f35ee0a56a1606f3149b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:276fbe3c102abbed5d2cc29b1dbf30456ab5d647fe7f157f18180cdd5ab0b431_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:5fb0bea0b4f43dce5201a986eb9bcd9aa9c2859e3d762f265e4d000a4c93474f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:8efb0787d02e6700bee64b83c251ee11f4cdc4a04eb770cea3ba34f3d9ec94b4_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel9@sha256:bf53175b6a2e11cf7f5599b65fcb4e56e4037ad5b6254c9e4fa070080aea66fc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:207a6c112b395d28579d8318d95bec18942834476574e07889ae734a4df1c4b5_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:242afe8097041307445f2e9f4b8d3d674aa4ff91c6ffe884ef170b356a09fe68_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:3e0bc79f2f14f0bf95c5c5f08a7838e8c3df3df5da52182f4807b844dda8638e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel9@sha256:9823d42834e5698b968385a7ef7d5a2a2749c441d8122a895bf53d3681df6a7c_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:06be3bd07a7bf44fb19a93869f6286fbdc7d8b8e7b8507e3c8ce9f8af67574f9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:175bde7c228af62b6f04799bc35a01d525a115d7decb73b2b5f90a3c8cf10a9c_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:4d800957aef55f44442be2a95bd85e3098587c6b0f7455b50264993cd4a2154b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel9@sha256:7fb3f1bf0b641c2f30493fb8e10e90625f5fd30f77ed3b7dec2a98012d54bbab_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:0a23d3fe6f4f54358bef552a62b3d098a97d39b4f1c0b0c0c6d3588c85276417_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:b26fb5031c85204e1b9174c49452146d4528560de554b70e2e97eebccd610fb8_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:e7d01fcd2995b921946a7842faec251ff4434bb9cda3b77e855339f2d9241471_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.11:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel9@sha256:ee31bd693543f37461982b1bbcdb783e438c3d1021875829bd24974a1d2c0ea6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/containerd/containerd: containerd: Host-root command execution via unvalidated image config labels in CRI plugin"
}
]
}
RHSA-2026:37287
Vulnerability from csaf_redhat - Published: 2026-07-09 13:10 - Updated: 2026-07-09 23:02A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as prototype pollution, allows an attacker to inject malicious properties into core JavaScript objects. When another component in the same application environment is compromised and pollutes the system's object prototype, Axios can unknowingly use these manipulated values in its outbound network requests. This could lead to the disclosure of sensitive information or the alteration of network communications, compromising data confidentiality and integrity.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:692395e99e4316e1855c61b026dd4718972ba792ca43c9f51e2dd96405fbdc4b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:aa50b6bbdc7d57c3595b1d58e3e7d4a6896ad5a5abc4d27ad65e829be6fdabd9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ae795e3096955b766ae1fbb94cba49fea43a4965eb5c23df071fbfd806d65432_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ebd311237bfc9d8f134765d3d581a29d3f5ce38010aab4a6af109cbad9cdcfbf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:154a97fc2ad1d8276954bed43632695ba620f8576cee207ca88501dc68401087_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:52a06fe4ab1b625a64d9e61a485c69c0df13a45c28ecc82e8d618556079b6ebb_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7fc19ce0a2953a917a0a4ff7aff3828a011e2edc5a207c864317dab4ad9ed307_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:9f00d5009bfe10e0e1a477e196322465edf77b75ad4dee9f30acebf9dada9057_ppc64le | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Kiali 2.4.20 for Red Hat OpenShift Service Mesh 3.0 is now available.\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Kiali 2.4.20, for Red Hat OpenShift Service Mesh 3.0, provides observability for the service mesh by offering a visual representation of the mesh topology and metrics, helping users monitor, trace, and manage efficiently.\n\nSecurity Fix(es):\n\n* CVE-2026-42264 openshift-service-mesh/kiali-ossmc-rhel9: Axios: Prototype pollution allows information disclosure and request manipulation (OSSM-14588)\n* CVE-2026-42264 openshift-service-mesh/kiali-rhel9: Axios: Prototype pollution allows information disclosure and request manipulation (OSSM-14593)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:37287",
"url": "https://access.redhat.com/errata/RHSA-2026:37287"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42264",
"url": "https://access.redhat.com/security/cve/CVE-2026-42264"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification",
"url": "https://access.redhat.com/security/updates/classification"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_37287.json"
}
],
"title": "Red Hat Security Advisory: Kiali 2.4.20 for Red Hat OpenShift Service Mesh 3.0",
"tracking": {
"current_release_date": "2026-07-09T23:02:50+00:00",
"generator": {
"date": "2026-07-09T23:02:50+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:37287",
"initial_release_date": "2026-07-09T13:10:00+00:00",
"revision_history": [
{
"date": "2026-07-09T13:10:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-09T13:10:08+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-09T23:02:50+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Service Mesh 3",
"product": {
"name": "Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:3.0::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7fc19ce0a2953a917a0a4ff7aff3828a011e2edc5a207c864317dab4ad9ed307_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7fc19ce0a2953a917a0a4ff7aff3828a011e2edc5a207c864317dab4ad9ed307_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7fc19ce0a2953a917a0a4ff7aff3828a011e2edc5a207c864317dab4ad9ed307_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A7fc19ce0a2953a917a0a4ff7aff3828a011e2edc5a207c864317dab4ad9ed307?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1783445546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ebd311237bfc9d8f134765d3d581a29d3f5ce38010aab4a6af109cbad9cdcfbf_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ebd311237bfc9d8f134765d3d581a29d3f5ce38010aab4a6af109cbad9cdcfbf_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ebd311237bfc9d8f134765d3d581a29d3f5ce38010aab4a6af109cbad9cdcfbf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3Aebd311237bfc9d8f134765d3d581a29d3f5ce38010aab4a6af109cbad9cdcfbf?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1782980312"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:52a06fe4ab1b625a64d9e61a485c69c0df13a45c28ecc82e8d618556079b6ebb_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:52a06fe4ab1b625a64d9e61a485c69c0df13a45c28ecc82e8d618556079b6ebb_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:52a06fe4ab1b625a64d9e61a485c69c0df13a45c28ecc82e8d618556079b6ebb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A52a06fe4ab1b625a64d9e61a485c69c0df13a45c28ecc82e8d618556079b6ebb?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1783445546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:aa50b6bbdc7d57c3595b1d58e3e7d4a6896ad5a5abc4d27ad65e829be6fdabd9_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:aa50b6bbdc7d57c3595b1d58e3e7d4a6896ad5a5abc4d27ad65e829be6fdabd9_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:aa50b6bbdc7d57c3595b1d58e3e7d4a6896ad5a5abc4d27ad65e829be6fdabd9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3Aaa50b6bbdc7d57c3595b1d58e3e7d4a6896ad5a5abc4d27ad65e829be6fdabd9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1782980312"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:9f00d5009bfe10e0e1a477e196322465edf77b75ad4dee9f30acebf9dada9057_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:9f00d5009bfe10e0e1a477e196322465edf77b75ad4dee9f30acebf9dada9057_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:9f00d5009bfe10e0e1a477e196322465edf77b75ad4dee9f30acebf9dada9057_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A9f00d5009bfe10e0e1a477e196322465edf77b75ad4dee9f30acebf9dada9057?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1783445546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ae795e3096955b766ae1fbb94cba49fea43a4965eb5c23df071fbfd806d65432_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ae795e3096955b766ae1fbb94cba49fea43a4965eb5c23df071fbfd806d65432_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ae795e3096955b766ae1fbb94cba49fea43a4965eb5c23df071fbfd806d65432_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3Aae795e3096955b766ae1fbb94cba49fea43a4965eb5c23df071fbfd806d65432?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1782980312"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:154a97fc2ad1d8276954bed43632695ba620f8576cee207ca88501dc68401087_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:154a97fc2ad1d8276954bed43632695ba620f8576cee207ca88501dc68401087_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:154a97fc2ad1d8276954bed43632695ba620f8576cee207ca88501dc68401087_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A154a97fc2ad1d8276954bed43632695ba620f8576cee207ca88501dc68401087?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1783445546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:692395e99e4316e1855c61b026dd4718972ba792ca43c9f51e2dd96405fbdc4b_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:692395e99e4316e1855c61b026dd4718972ba792ca43c9f51e2dd96405fbdc4b_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:692395e99e4316e1855c61b026dd4718972ba792ca43c9f51e2dd96405fbdc4b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3A692395e99e4316e1855c61b026dd4718972ba792ca43c9f51e2dd96405fbdc4b?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1782980312"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:692395e99e4316e1855c61b026dd4718972ba792ca43c9f51e2dd96405fbdc4b_s390x as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:692395e99e4316e1855c61b026dd4718972ba792ca43c9f51e2dd96405fbdc4b_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:692395e99e4316e1855c61b026dd4718972ba792ca43c9f51e2dd96405fbdc4b_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:aa50b6bbdc7d57c3595b1d58e3e7d4a6896ad5a5abc4d27ad65e829be6fdabd9_arm64 as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:aa50b6bbdc7d57c3595b1d58e3e7d4a6896ad5a5abc4d27ad65e829be6fdabd9_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:aa50b6bbdc7d57c3595b1d58e3e7d4a6896ad5a5abc4d27ad65e829be6fdabd9_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ae795e3096955b766ae1fbb94cba49fea43a4965eb5c23df071fbfd806d65432_ppc64le as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ae795e3096955b766ae1fbb94cba49fea43a4965eb5c23df071fbfd806d65432_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ae795e3096955b766ae1fbb94cba49fea43a4965eb5c23df071fbfd806d65432_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ebd311237bfc9d8f134765d3d581a29d3f5ce38010aab4a6af109cbad9cdcfbf_amd64 as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ebd311237bfc9d8f134765d3d581a29d3f5ce38010aab4a6af109cbad9cdcfbf_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ebd311237bfc9d8f134765d3d581a29d3f5ce38010aab4a6af109cbad9cdcfbf_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:154a97fc2ad1d8276954bed43632695ba620f8576cee207ca88501dc68401087_s390x as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:154a97fc2ad1d8276954bed43632695ba620f8576cee207ca88501dc68401087_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:154a97fc2ad1d8276954bed43632695ba620f8576cee207ca88501dc68401087_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:52a06fe4ab1b625a64d9e61a485c69c0df13a45c28ecc82e8d618556079b6ebb_arm64 as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:52a06fe4ab1b625a64d9e61a485c69c0df13a45c28ecc82e8d618556079b6ebb_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:52a06fe4ab1b625a64d9e61a485c69c0df13a45c28ecc82e8d618556079b6ebb_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7fc19ce0a2953a917a0a4ff7aff3828a011e2edc5a207c864317dab4ad9ed307_amd64 as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7fc19ce0a2953a917a0a4ff7aff3828a011e2edc5a207c864317dab4ad9ed307_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7fc19ce0a2953a917a0a4ff7aff3828a011e2edc5a207c864317dab4ad9ed307_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:9f00d5009bfe10e0e1a477e196322465edf77b75ad4dee9f30acebf9dada9057_ppc64le as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:9f00d5009bfe10e0e1a477e196322465edf77b75ad4dee9f30acebf9dada9057_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:9f00d5009bfe10e0e1a477e196322465edf77b75ad4dee9f30acebf9dada9057_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-42264",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-05-08T04:02:21.039378+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467927"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as prototype pollution, allows an attacker to inject malicious properties into core JavaScript objects. When another component in the same application environment is compromised and pollutes the system\u0027s object prototype, Axios can unknowingly use these manipulated values in its outbound network requests. This could lead to the disclosure of sensitive information or the alteration of network communications, compromising data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Prototype pollution allows information disclosure and request manipulation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important prototype pollution flaw in Axios could result in information disclosure and network request manipulation. The vulnerability occurs when a co-located dependency in the application environment successfully pollutes the JavaScript `Object.prototype`. Under these conditions, Axios may unknowingly incorporate the manipulated properties into its outbound HTTP requests, potentially compromising data confidentiality and integrity. Exploitation is contingent on a prior successful prototype pollution attack from another component.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:692395e99e4316e1855c61b026dd4718972ba792ca43c9f51e2dd96405fbdc4b_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:aa50b6bbdc7d57c3595b1d58e3e7d4a6896ad5a5abc4d27ad65e829be6fdabd9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ae795e3096955b766ae1fbb94cba49fea43a4965eb5c23df071fbfd806d65432_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ebd311237bfc9d8f134765d3d581a29d3f5ce38010aab4a6af109cbad9cdcfbf_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:154a97fc2ad1d8276954bed43632695ba620f8576cee207ca88501dc68401087_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:52a06fe4ab1b625a64d9e61a485c69c0df13a45c28ecc82e8d618556079b6ebb_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7fc19ce0a2953a917a0a4ff7aff3828a011e2edc5a207c864317dab4ad9ed307_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:9f00d5009bfe10e0e1a477e196322465edf77b75ad4dee9f30acebf9dada9057_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42264"
},
{
"category": "external",
"summary": "RHBZ#2467927",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467927"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42264",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42264"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42264",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42264"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa",
"url": "https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/pull/10779",
"url": "https://github.com/axios/axios/pull/10779"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases/tag/v1.15.2",
"url": "https://github.com/axios/axios/releases/tag/v1.15.2"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj",
"url": "https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj"
}
],
"release_date": "2026-05-08T03:20:24.248000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T13:10:00+00:00",
"details": "See Kiali 2.4.20 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.0/html/observability/kiali-operator-provided-by-red-hat",
"product_ids": [
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:692395e99e4316e1855c61b026dd4718972ba792ca43c9f51e2dd96405fbdc4b_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:aa50b6bbdc7d57c3595b1d58e3e7d4a6896ad5a5abc4d27ad65e829be6fdabd9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ae795e3096955b766ae1fbb94cba49fea43a4965eb5c23df071fbfd806d65432_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ebd311237bfc9d8f134765d3d581a29d3f5ce38010aab4a6af109cbad9cdcfbf_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:154a97fc2ad1d8276954bed43632695ba620f8576cee207ca88501dc68401087_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:52a06fe4ab1b625a64d9e61a485c69c0df13a45c28ecc82e8d618556079b6ebb_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7fc19ce0a2953a917a0a4ff7aff3828a011e2edc5a207c864317dab4ad9ed307_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:9f00d5009bfe10e0e1a477e196322465edf77b75ad4dee9f30acebf9dada9057_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37287"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:692395e99e4316e1855c61b026dd4718972ba792ca43c9f51e2dd96405fbdc4b_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:aa50b6bbdc7d57c3595b1d58e3e7d4a6896ad5a5abc4d27ad65e829be6fdabd9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ae795e3096955b766ae1fbb94cba49fea43a4965eb5c23df071fbfd806d65432_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ebd311237bfc9d8f134765d3d581a29d3f5ce38010aab4a6af109cbad9cdcfbf_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:154a97fc2ad1d8276954bed43632695ba620f8576cee207ca88501dc68401087_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:52a06fe4ab1b625a64d9e61a485c69c0df13a45c28ecc82e8d618556079b6ebb_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7fc19ce0a2953a917a0a4ff7aff3828a011e2edc5a207c864317dab4ad9ed307_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:9f00d5009bfe10e0e1a477e196322465edf77b75ad4dee9f30acebf9dada9057_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:692395e99e4316e1855c61b026dd4718972ba792ca43c9f51e2dd96405fbdc4b_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:aa50b6bbdc7d57c3595b1d58e3e7d4a6896ad5a5abc4d27ad65e829be6fdabd9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ae795e3096955b766ae1fbb94cba49fea43a4965eb5c23df071fbfd806d65432_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ebd311237bfc9d8f134765d3d581a29d3f5ce38010aab4a6af109cbad9cdcfbf_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:154a97fc2ad1d8276954bed43632695ba620f8576cee207ca88501dc68401087_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:52a06fe4ab1b625a64d9e61a485c69c0df13a45c28ecc82e8d618556079b6ebb_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7fc19ce0a2953a917a0a4ff7aff3828a011e2edc5a207c864317dab4ad9ed307_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:9f00d5009bfe10e0e1a477e196322465edf77b75ad4dee9f30acebf9dada9057_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Prototype pollution allows information disclosure and request manipulation"
}
]
}
RHSA-2026:37288
Vulnerability from csaf_redhat - Published: 2026-07-09 13:14 - Updated: 2026-07-09 23:02A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as prototype pollution, allows an attacker to inject malicious properties into core JavaScript objects. When another component in the same application environment is compromised and pollutes the system's object prototype, Axios can unknowingly use these manipulated values in its outbound network requests. This could lead to the disclosure of sensitive information or the alteration of network communications, compromising data confidentiality and integrity.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:15ef69f48499bda3c3bb74a42eaac8767f2fb9c0f7bdc1b43fb3c93d4fce6b6a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a5c3b7b7679332402779eceef17fc357e32a8aaa5c6f53316629b024f9299732_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a6f483b6fad07a7b795cb7a03ee207caa244095d4c7093a26429d9ed174f51d6_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:e8f19a67b677ac2887672fae9e3e5af0f16c43f39ebdb586d63dbf4952a0bdcf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:44323f737e5387eadb4fabdf4d3714574d08c0406fac878e03ec72d4021d8015_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:4c48f07caf7bb446c29306426285a9cf7f13c0e09781d32bccd1d0b4c8e92746_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:8a763ae659fe26c606bae6975a407d23b1a59089296948564acedfa598556236_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:ef89917d4928382e942a7c6277d213736ddb10371e69ac39a1dd9c801ab6e68a_s390x | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Kiali 2.22.7 for Red Hat OpenShift Service Mesh 3.3 is now available.\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Kiali 2.22.7, for Red Hat OpenShift Service Mesh 3.3, provides observability for the service mesh by offering a visual representation of the mesh topology and metrics, helping users monitor, trace, and manage efficiently.\n\nSecurity Fix(es):\n\n* CVE-2026-42264 openshift-service-mesh/kiali-ossmc-rhel9: Axios: Prototype pollution allows information disclosure and request manipulation (OSSM-14596)\n* CVE-2026-42264 openshift-service-mesh/kiali-rhel9: Axios: Prototype pollution allows information disclosure and request manipulation (OSSM-14599)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:37288",
"url": "https://access.redhat.com/errata/RHSA-2026:37288"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42264",
"url": "https://access.redhat.com/security/cve/CVE-2026-42264"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification",
"url": "https://access.redhat.com/security/updates/classification"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_37288.json"
}
],
"title": "Red Hat Security Advisory: Kiali 2.22.7 for Red Hat OpenShift Service Mesh 3.3",
"tracking": {
"current_release_date": "2026-07-09T23:02:48+00:00",
"generator": {
"date": "2026-07-09T23:02:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:37288",
"initial_release_date": "2026-07-09T13:14:19+00:00",
"revision_history": [
{
"date": "2026-07-09T13:14:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-09T13:14:28+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-09T23:02:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Service Mesh 3.3",
"product": {
"name": "Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:3.3::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:4c48f07caf7bb446c29306426285a9cf7f13c0e09781d32bccd1d0b4c8e92746_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:4c48f07caf7bb446c29306426285a9cf7f13c0e09781d32bccd1d0b4c8e92746_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:4c48f07caf7bb446c29306426285a9cf7f13c0e09781d32bccd1d0b4c8e92746_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A4c48f07caf7bb446c29306426285a9cf7f13c0e09781d32bccd1d0b4c8e92746?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1783445593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:e8f19a67b677ac2887672fae9e3e5af0f16c43f39ebdb586d63dbf4952a0bdcf_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:e8f19a67b677ac2887672fae9e3e5af0f16c43f39ebdb586d63dbf4952a0bdcf_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:e8f19a67b677ac2887672fae9e3e5af0f16c43f39ebdb586d63dbf4952a0bdcf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3Ae8f19a67b677ac2887672fae9e3e5af0f16c43f39ebdb586d63dbf4952a0bdcf?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1782980360"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:8a763ae659fe26c606bae6975a407d23b1a59089296948564acedfa598556236_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:8a763ae659fe26c606bae6975a407d23b1a59089296948564acedfa598556236_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:8a763ae659fe26c606bae6975a407d23b1a59089296948564acedfa598556236_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A8a763ae659fe26c606bae6975a407d23b1a59089296948564acedfa598556236?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1783445593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a6f483b6fad07a7b795cb7a03ee207caa244095d4c7093a26429d9ed174f51d6_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a6f483b6fad07a7b795cb7a03ee207caa244095d4c7093a26429d9ed174f51d6_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a6f483b6fad07a7b795cb7a03ee207caa244095d4c7093a26429d9ed174f51d6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3Aa6f483b6fad07a7b795cb7a03ee207caa244095d4c7093a26429d9ed174f51d6?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1782980360"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:44323f737e5387eadb4fabdf4d3714574d08c0406fac878e03ec72d4021d8015_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:44323f737e5387eadb4fabdf4d3714574d08c0406fac878e03ec72d4021d8015_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:44323f737e5387eadb4fabdf4d3714574d08c0406fac878e03ec72d4021d8015_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A44323f737e5387eadb4fabdf4d3714574d08c0406fac878e03ec72d4021d8015?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1783445593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a5c3b7b7679332402779eceef17fc357e32a8aaa5c6f53316629b024f9299732_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a5c3b7b7679332402779eceef17fc357e32a8aaa5c6f53316629b024f9299732_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a5c3b7b7679332402779eceef17fc357e32a8aaa5c6f53316629b024f9299732_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3Aa5c3b7b7679332402779eceef17fc357e32a8aaa5c6f53316629b024f9299732?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1782980360"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:ef89917d4928382e942a7c6277d213736ddb10371e69ac39a1dd9c801ab6e68a_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:ef89917d4928382e942a7c6277d213736ddb10371e69ac39a1dd9c801ab6e68a_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:ef89917d4928382e942a7c6277d213736ddb10371e69ac39a1dd9c801ab6e68a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3Aef89917d4928382e942a7c6277d213736ddb10371e69ac39a1dd9c801ab6e68a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1783445593"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:15ef69f48499bda3c3bb74a42eaac8767f2fb9c0f7bdc1b43fb3c93d4fce6b6a_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:15ef69f48499bda3c3bb74a42eaac8767f2fb9c0f7bdc1b43fb3c93d4fce6b6a_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:15ef69f48499bda3c3bb74a42eaac8767f2fb9c0f7bdc1b43fb3c93d4fce6b6a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3A15ef69f48499bda3c3bb74a42eaac8767f2fb9c0f7bdc1b43fb3c93d4fce6b6a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1782980360"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:15ef69f48499bda3c3bb74a42eaac8767f2fb9c0f7bdc1b43fb3c93d4fce6b6a_s390x as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:15ef69f48499bda3c3bb74a42eaac8767f2fb9c0f7bdc1b43fb3c93d4fce6b6a_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:15ef69f48499bda3c3bb74a42eaac8767f2fb9c0f7bdc1b43fb3c93d4fce6b6a_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a5c3b7b7679332402779eceef17fc357e32a8aaa5c6f53316629b024f9299732_ppc64le as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a5c3b7b7679332402779eceef17fc357e32a8aaa5c6f53316629b024f9299732_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a5c3b7b7679332402779eceef17fc357e32a8aaa5c6f53316629b024f9299732_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a6f483b6fad07a7b795cb7a03ee207caa244095d4c7093a26429d9ed174f51d6_arm64 as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a6f483b6fad07a7b795cb7a03ee207caa244095d4c7093a26429d9ed174f51d6_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a6f483b6fad07a7b795cb7a03ee207caa244095d4c7093a26429d9ed174f51d6_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:e8f19a67b677ac2887672fae9e3e5af0f16c43f39ebdb586d63dbf4952a0bdcf_amd64 as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:e8f19a67b677ac2887672fae9e3e5af0f16c43f39ebdb586d63dbf4952a0bdcf_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:e8f19a67b677ac2887672fae9e3e5af0f16c43f39ebdb586d63dbf4952a0bdcf_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:44323f737e5387eadb4fabdf4d3714574d08c0406fac878e03ec72d4021d8015_ppc64le as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:44323f737e5387eadb4fabdf4d3714574d08c0406fac878e03ec72d4021d8015_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:44323f737e5387eadb4fabdf4d3714574d08c0406fac878e03ec72d4021d8015_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:4c48f07caf7bb446c29306426285a9cf7f13c0e09781d32bccd1d0b4c8e92746_amd64 as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:4c48f07caf7bb446c29306426285a9cf7f13c0e09781d32bccd1d0b4c8e92746_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:4c48f07caf7bb446c29306426285a9cf7f13c0e09781d32bccd1d0b4c8e92746_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:8a763ae659fe26c606bae6975a407d23b1a59089296948564acedfa598556236_arm64 as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:8a763ae659fe26c606bae6975a407d23b1a59089296948564acedfa598556236_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:8a763ae659fe26c606bae6975a407d23b1a59089296948564acedfa598556236_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:ef89917d4928382e942a7c6277d213736ddb10371e69ac39a1dd9c801ab6e68a_s390x as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:ef89917d4928382e942a7c6277d213736ddb10371e69ac39a1dd9c801ab6e68a_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:ef89917d4928382e942a7c6277d213736ddb10371e69ac39a1dd9c801ab6e68a_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-42264",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-05-08T04:02:21.039378+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467927"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as prototype pollution, allows an attacker to inject malicious properties into core JavaScript objects. When another component in the same application environment is compromised and pollutes the system\u0027s object prototype, Axios can unknowingly use these manipulated values in its outbound network requests. This could lead to the disclosure of sensitive information or the alteration of network communications, compromising data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Prototype pollution allows information disclosure and request manipulation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important prototype pollution flaw in Axios could result in information disclosure and network request manipulation. The vulnerability occurs when a co-located dependency in the application environment successfully pollutes the JavaScript `Object.prototype`. Under these conditions, Axios may unknowingly incorporate the manipulated properties into its outbound HTTP requests, potentially compromising data confidentiality and integrity. Exploitation is contingent on a prior successful prototype pollution attack from another component.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:15ef69f48499bda3c3bb74a42eaac8767f2fb9c0f7bdc1b43fb3c93d4fce6b6a_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a5c3b7b7679332402779eceef17fc357e32a8aaa5c6f53316629b024f9299732_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a6f483b6fad07a7b795cb7a03ee207caa244095d4c7093a26429d9ed174f51d6_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:e8f19a67b677ac2887672fae9e3e5af0f16c43f39ebdb586d63dbf4952a0bdcf_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:44323f737e5387eadb4fabdf4d3714574d08c0406fac878e03ec72d4021d8015_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:4c48f07caf7bb446c29306426285a9cf7f13c0e09781d32bccd1d0b4c8e92746_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:8a763ae659fe26c606bae6975a407d23b1a59089296948564acedfa598556236_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:ef89917d4928382e942a7c6277d213736ddb10371e69ac39a1dd9c801ab6e68a_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42264"
},
{
"category": "external",
"summary": "RHBZ#2467927",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467927"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42264",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42264"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42264",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42264"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa",
"url": "https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/pull/10779",
"url": "https://github.com/axios/axios/pull/10779"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases/tag/v1.15.2",
"url": "https://github.com/axios/axios/releases/tag/v1.15.2"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj",
"url": "https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj"
}
],
"release_date": "2026-05-08T03:20:24.248000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T13:14:19+00:00",
"details": "See Kiali 2.22.7 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.3/html/observability/kiali-operator-provided-by-red-hat",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:15ef69f48499bda3c3bb74a42eaac8767f2fb9c0f7bdc1b43fb3c93d4fce6b6a_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a5c3b7b7679332402779eceef17fc357e32a8aaa5c6f53316629b024f9299732_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a6f483b6fad07a7b795cb7a03ee207caa244095d4c7093a26429d9ed174f51d6_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:e8f19a67b677ac2887672fae9e3e5af0f16c43f39ebdb586d63dbf4952a0bdcf_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:44323f737e5387eadb4fabdf4d3714574d08c0406fac878e03ec72d4021d8015_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:4c48f07caf7bb446c29306426285a9cf7f13c0e09781d32bccd1d0b4c8e92746_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:8a763ae659fe26c606bae6975a407d23b1a59089296948564acedfa598556236_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:ef89917d4928382e942a7c6277d213736ddb10371e69ac39a1dd9c801ab6e68a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37288"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:15ef69f48499bda3c3bb74a42eaac8767f2fb9c0f7bdc1b43fb3c93d4fce6b6a_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a5c3b7b7679332402779eceef17fc357e32a8aaa5c6f53316629b024f9299732_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a6f483b6fad07a7b795cb7a03ee207caa244095d4c7093a26429d9ed174f51d6_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:e8f19a67b677ac2887672fae9e3e5af0f16c43f39ebdb586d63dbf4952a0bdcf_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:44323f737e5387eadb4fabdf4d3714574d08c0406fac878e03ec72d4021d8015_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:4c48f07caf7bb446c29306426285a9cf7f13c0e09781d32bccd1d0b4c8e92746_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:8a763ae659fe26c606bae6975a407d23b1a59089296948564acedfa598556236_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:ef89917d4928382e942a7c6277d213736ddb10371e69ac39a1dd9c801ab6e68a_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:15ef69f48499bda3c3bb74a42eaac8767f2fb9c0f7bdc1b43fb3c93d4fce6b6a_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a5c3b7b7679332402779eceef17fc357e32a8aaa5c6f53316629b024f9299732_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:a6f483b6fad07a7b795cb7a03ee207caa244095d4c7093a26429d9ed174f51d6_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:e8f19a67b677ac2887672fae9e3e5af0f16c43f39ebdb586d63dbf4952a0bdcf_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:44323f737e5387eadb4fabdf4d3714574d08c0406fac878e03ec72d4021d8015_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:4c48f07caf7bb446c29306426285a9cf7f13c0e09781d32bccd1d0b4c8e92746_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:8a763ae659fe26c606bae6975a407d23b1a59089296948564acedfa598556236_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:ef89917d4928382e942a7c6277d213736ddb10371e69ac39a1dd9c801ab6e68a_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Prototype pollution allows information disclosure and request manipulation"
}
]
}
RHSA-2026:37297
Vulnerability from csaf_redhat - Published: 2026-07-09 13:45 - Updated: 2026-07-09 23:02A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as prototype pollution, allows an attacker to inject malicious properties into core JavaScript objects. When another component in the same application environment is compromised and pollutes the system's object prototype, Axios can unknowingly use these manipulated values in its outbound network requests. This could lead to the disclosure of sensitive information or the alteration of network communications, compromising data confidentiality and integrity.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:3b5444e5ee0c54e96827ea1f96b69a73b8a5f1312e14ccf0b23484313c576648_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:5f52116acbe2991873f7cc905975a5fde548bb6d0ea9bf7219864852b559b63c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8698cd63a4eb630234c12e4330e07b811a87765c5890b0cbdc2e40e7567fb7e5_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:d8ed06e285098dd01770b442ec325f4e94dd4b19757fad29631e8d4fb94fb43d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:3ebf3ef54040d664adface8ab5738f3f6ca601bef651c3cf19029c89db0b9d40_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:6c41fba6599d39c3a823b01d7647bfd5fb315f1d34331ccfaba31f29724a7e48_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7a4921c99a5b0ae90e7aaf8c2298d5254ec1742576d1894aade55bcb38570808_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:bb6c49c2edc61441f4688f9bc43a46e6d80ebdaa50cd9f850156186776e551f8_ppc64le | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Kiali 2.11.14 for Red Hat OpenShift Service Mesh 3.1 is now available.\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Kiali 2.11.14, for Red Hat OpenShift Service Mesh 3.1, provides observability for the service mesh by offering a visual representation of the mesh topology and metrics, helping users monitor, trace, and manage efficiently.\n\nSecurity Fix(es):\n\n* CVE-2026-42264 openshift-service-mesh/kiali-rhel9: Axios: Prototype pollution allows information disclosure and request manipulation (OSSM-14595)\n* CVE-2026-42264 openshift-service-mesh/kiali-ossmc-rhel9: Axios: Prototype pollution allows information disclosure and request manipulation (OSSM-14600)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:37297",
"url": "https://access.redhat.com/errata/RHSA-2026:37297"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42264",
"url": "https://access.redhat.com/security/cve/CVE-2026-42264"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification",
"url": "https://access.redhat.com/security/updates/classification"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_37297.json"
}
],
"title": "Red Hat Security Advisory: Kiali 2.11.14 for Red Hat OpenShift Service Mesh 3.1",
"tracking": {
"current_release_date": "2026-07-09T23:02:49+00:00",
"generator": {
"date": "2026-07-09T23:02:49+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:37297",
"initial_release_date": "2026-07-09T13:45:11+00:00",
"revision_history": [
{
"date": "2026-07-09T13:45:11+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-09T13:45:20+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-09T23:02:49+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Service Mesh 3.1",
"product": {
"name": "Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:3.1::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7a4921c99a5b0ae90e7aaf8c2298d5254ec1742576d1894aade55bcb38570808_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7a4921c99a5b0ae90e7aaf8c2298d5254ec1742576d1894aade55bcb38570808_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7a4921c99a5b0ae90e7aaf8c2298d5254ec1742576d1894aade55bcb38570808_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A7a4921c99a5b0ae90e7aaf8c2298d5254ec1742576d1894aade55bcb38570808?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1783445529"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:3b5444e5ee0c54e96827ea1f96b69a73b8a5f1312e14ccf0b23484313c576648_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:3b5444e5ee0c54e96827ea1f96b69a73b8a5f1312e14ccf0b23484313c576648_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:3b5444e5ee0c54e96827ea1f96b69a73b8a5f1312e14ccf0b23484313c576648_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3A3b5444e5ee0c54e96827ea1f96b69a73b8a5f1312e14ccf0b23484313c576648?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1782980278"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:3ebf3ef54040d664adface8ab5738f3f6ca601bef651c3cf19029c89db0b9d40_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:3ebf3ef54040d664adface8ab5738f3f6ca601bef651c3cf19029c89db0b9d40_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:3ebf3ef54040d664adface8ab5738f3f6ca601bef651c3cf19029c89db0b9d40_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A3ebf3ef54040d664adface8ab5738f3f6ca601bef651c3cf19029c89db0b9d40?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1783445529"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:5f52116acbe2991873f7cc905975a5fde548bb6d0ea9bf7219864852b559b63c_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:5f52116acbe2991873f7cc905975a5fde548bb6d0ea9bf7219864852b559b63c_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:5f52116acbe2991873f7cc905975a5fde548bb6d0ea9bf7219864852b559b63c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3A5f52116acbe2991873f7cc905975a5fde548bb6d0ea9bf7219864852b559b63c?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1782980278"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:bb6c49c2edc61441f4688f9bc43a46e6d80ebdaa50cd9f850156186776e551f8_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:bb6c49c2edc61441f4688f9bc43a46e6d80ebdaa50cd9f850156186776e551f8_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:bb6c49c2edc61441f4688f9bc43a46e6d80ebdaa50cd9f850156186776e551f8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3Abb6c49c2edc61441f4688f9bc43a46e6d80ebdaa50cd9f850156186776e551f8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1783445529"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8698cd63a4eb630234c12e4330e07b811a87765c5890b0cbdc2e40e7567fb7e5_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8698cd63a4eb630234c12e4330e07b811a87765c5890b0cbdc2e40e7567fb7e5_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8698cd63a4eb630234c12e4330e07b811a87765c5890b0cbdc2e40e7567fb7e5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3A8698cd63a4eb630234c12e4330e07b811a87765c5890b0cbdc2e40e7567fb7e5?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1782980278"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:6c41fba6599d39c3a823b01d7647bfd5fb315f1d34331ccfaba31f29724a7e48_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:6c41fba6599d39c3a823b01d7647bfd5fb315f1d34331ccfaba31f29724a7e48_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:6c41fba6599d39c3a823b01d7647bfd5fb315f1d34331ccfaba31f29724a7e48_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A6c41fba6599d39c3a823b01d7647bfd5fb315f1d34331ccfaba31f29724a7e48?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1783445529"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:d8ed06e285098dd01770b442ec325f4e94dd4b19757fad29631e8d4fb94fb43d_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:d8ed06e285098dd01770b442ec325f4e94dd4b19757fad29631e8d4fb94fb43d_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:d8ed06e285098dd01770b442ec325f4e94dd4b19757fad29631e8d4fb94fb43d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3Ad8ed06e285098dd01770b442ec325f4e94dd4b19757fad29631e8d4fb94fb43d?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1782980278"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:3b5444e5ee0c54e96827ea1f96b69a73b8a5f1312e14ccf0b23484313c576648_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:3b5444e5ee0c54e96827ea1f96b69a73b8a5f1312e14ccf0b23484313c576648_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:3b5444e5ee0c54e96827ea1f96b69a73b8a5f1312e14ccf0b23484313c576648_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:5f52116acbe2991873f7cc905975a5fde548bb6d0ea9bf7219864852b559b63c_arm64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:5f52116acbe2991873f7cc905975a5fde548bb6d0ea9bf7219864852b559b63c_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:5f52116acbe2991873f7cc905975a5fde548bb6d0ea9bf7219864852b559b63c_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8698cd63a4eb630234c12e4330e07b811a87765c5890b0cbdc2e40e7567fb7e5_ppc64le as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8698cd63a4eb630234c12e4330e07b811a87765c5890b0cbdc2e40e7567fb7e5_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8698cd63a4eb630234c12e4330e07b811a87765c5890b0cbdc2e40e7567fb7e5_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:d8ed06e285098dd01770b442ec325f4e94dd4b19757fad29631e8d4fb94fb43d_s390x as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:d8ed06e285098dd01770b442ec325f4e94dd4b19757fad29631e8d4fb94fb43d_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:d8ed06e285098dd01770b442ec325f4e94dd4b19757fad29631e8d4fb94fb43d_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:3ebf3ef54040d664adface8ab5738f3f6ca601bef651c3cf19029c89db0b9d40_arm64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:3ebf3ef54040d664adface8ab5738f3f6ca601bef651c3cf19029c89db0b9d40_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:3ebf3ef54040d664adface8ab5738f3f6ca601bef651c3cf19029c89db0b9d40_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:6c41fba6599d39c3a823b01d7647bfd5fb315f1d34331ccfaba31f29724a7e48_s390x as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:6c41fba6599d39c3a823b01d7647bfd5fb315f1d34331ccfaba31f29724a7e48_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:6c41fba6599d39c3a823b01d7647bfd5fb315f1d34331ccfaba31f29724a7e48_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7a4921c99a5b0ae90e7aaf8c2298d5254ec1742576d1894aade55bcb38570808_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7a4921c99a5b0ae90e7aaf8c2298d5254ec1742576d1894aade55bcb38570808_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7a4921c99a5b0ae90e7aaf8c2298d5254ec1742576d1894aade55bcb38570808_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:bb6c49c2edc61441f4688f9bc43a46e6d80ebdaa50cd9f850156186776e551f8_ppc64le as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:bb6c49c2edc61441f4688f9bc43a46e6d80ebdaa50cd9f850156186776e551f8_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:bb6c49c2edc61441f4688f9bc43a46e6d80ebdaa50cd9f850156186776e551f8_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-42264",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-05-08T04:02:21.039378+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467927"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as prototype pollution, allows an attacker to inject malicious properties into core JavaScript objects. When another component in the same application environment is compromised and pollutes the system\u0027s object prototype, Axios can unknowingly use these manipulated values in its outbound network requests. This could lead to the disclosure of sensitive information or the alteration of network communications, compromising data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Prototype pollution allows information disclosure and request manipulation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important prototype pollution flaw in Axios could result in information disclosure and network request manipulation. The vulnerability occurs when a co-located dependency in the application environment successfully pollutes the JavaScript `Object.prototype`. Under these conditions, Axios may unknowingly incorporate the manipulated properties into its outbound HTTP requests, potentially compromising data confidentiality and integrity. Exploitation is contingent on a prior successful prototype pollution attack from another component.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:3b5444e5ee0c54e96827ea1f96b69a73b8a5f1312e14ccf0b23484313c576648_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:5f52116acbe2991873f7cc905975a5fde548bb6d0ea9bf7219864852b559b63c_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8698cd63a4eb630234c12e4330e07b811a87765c5890b0cbdc2e40e7567fb7e5_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:d8ed06e285098dd01770b442ec325f4e94dd4b19757fad29631e8d4fb94fb43d_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:3ebf3ef54040d664adface8ab5738f3f6ca601bef651c3cf19029c89db0b9d40_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:6c41fba6599d39c3a823b01d7647bfd5fb315f1d34331ccfaba31f29724a7e48_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7a4921c99a5b0ae90e7aaf8c2298d5254ec1742576d1894aade55bcb38570808_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:bb6c49c2edc61441f4688f9bc43a46e6d80ebdaa50cd9f850156186776e551f8_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42264"
},
{
"category": "external",
"summary": "RHBZ#2467927",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467927"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42264",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42264"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42264",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42264"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa",
"url": "https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/pull/10779",
"url": "https://github.com/axios/axios/pull/10779"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases/tag/v1.15.2",
"url": "https://github.com/axios/axios/releases/tag/v1.15.2"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj",
"url": "https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj"
}
],
"release_date": "2026-05-08T03:20:24.248000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-07-09T13:45:11+00:00",
"details": "See Kiali 2.11.14 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.1/html/observability/kiali-operator-provided-by-red-hat",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:3b5444e5ee0c54e96827ea1f96b69a73b8a5f1312e14ccf0b23484313c576648_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:5f52116acbe2991873f7cc905975a5fde548bb6d0ea9bf7219864852b559b63c_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8698cd63a4eb630234c12e4330e07b811a87765c5890b0cbdc2e40e7567fb7e5_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:d8ed06e285098dd01770b442ec325f4e94dd4b19757fad29631e8d4fb94fb43d_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:3ebf3ef54040d664adface8ab5738f3f6ca601bef651c3cf19029c89db0b9d40_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:6c41fba6599d39c3a823b01d7647bfd5fb315f1d34331ccfaba31f29724a7e48_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7a4921c99a5b0ae90e7aaf8c2298d5254ec1742576d1894aade55bcb38570808_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:bb6c49c2edc61441f4688f9bc43a46e6d80ebdaa50cd9f850156186776e551f8_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:37297"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:3b5444e5ee0c54e96827ea1f96b69a73b8a5f1312e14ccf0b23484313c576648_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:5f52116acbe2991873f7cc905975a5fde548bb6d0ea9bf7219864852b559b63c_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8698cd63a4eb630234c12e4330e07b811a87765c5890b0cbdc2e40e7567fb7e5_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:d8ed06e285098dd01770b442ec325f4e94dd4b19757fad29631e8d4fb94fb43d_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:3ebf3ef54040d664adface8ab5738f3f6ca601bef651c3cf19029c89db0b9d40_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:6c41fba6599d39c3a823b01d7647bfd5fb315f1d34331ccfaba31f29724a7e48_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7a4921c99a5b0ae90e7aaf8c2298d5254ec1742576d1894aade55bcb38570808_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:bb6c49c2edc61441f4688f9bc43a46e6d80ebdaa50cd9f850156186776e551f8_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:3b5444e5ee0c54e96827ea1f96b69a73b8a5f1312e14ccf0b23484313c576648_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:5f52116acbe2991873f7cc905975a5fde548bb6d0ea9bf7219864852b559b63c_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8698cd63a4eb630234c12e4330e07b811a87765c5890b0cbdc2e40e7567fb7e5_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:d8ed06e285098dd01770b442ec325f4e94dd4b19757fad29631e8d4fb94fb43d_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:3ebf3ef54040d664adface8ab5738f3f6ca601bef651c3cf19029c89db0b9d40_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:6c41fba6599d39c3a823b01d7647bfd5fb315f1d34331ccfaba31f29724a7e48_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:7a4921c99a5b0ae90e7aaf8c2298d5254ec1742576d1894aade55bcb38570808_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:bb6c49c2edc61441f4688f9bc43a46e6d80ebdaa50cd9f850156186776e551f8_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Prototype pollution allows information disclosure and request manipulation"
}
]
}
WID-SEC-W-2026-1654
Vulnerability from csaf_certbund - Published: 2026-05-21 22:00 - Updated: 2026-05-21 22:00| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM App Connect Enterprise Certified Container <12.0.12.26
IBM / App Connect Enterprise
|
Certified Container <12.0.12.26 | ||
|
IBM App Connect Enterprise Certified Container <13.0.7.2
IBM / App Connect Enterprise
|
Certified Container <13.0.7.2 | ||
|
IBM App Connect Enterprise Certified Container <12.0.24
IBM / App Connect Enterprise
|
Certified Container <12.0.24 | ||
|
IBM App Connect Enterprise Certified Container <13.1.0
IBM / App Connect Enterprise
|
Certified Container <13.1.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM App Connect Enterprise Certified Container <12.0.12.26
IBM / App Connect Enterprise
|
Certified Container <12.0.12.26 | ||
|
IBM App Connect Enterprise Certified Container <13.0.7.2
IBM / App Connect Enterprise
|
Certified Container <13.0.7.2 | ||
|
IBM App Connect Enterprise Certified Container <12.0.24
IBM / App Connect Enterprise
|
Certified Container <12.0.24 | ||
|
IBM App Connect Enterprise Certified Container <13.1.0
IBM / App Connect Enterprise
|
Certified Container <13.1.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM App Connect Enterprise Certified Container <12.0.12.26
IBM / App Connect Enterprise
|
Certified Container <12.0.12.26 | ||
|
IBM App Connect Enterprise Certified Container <13.0.7.2
IBM / App Connect Enterprise
|
Certified Container <13.0.7.2 | ||
|
IBM App Connect Enterprise Certified Container <12.0.24
IBM / App Connect Enterprise
|
Certified Container <12.0.24 | ||
|
IBM App Connect Enterprise Certified Container <13.1.0
IBM / App Connect Enterprise
|
Certified Container <13.1.0 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM App Connect Enterprise Certified Container <12.0.12.26
IBM / App Connect Enterprise
|
Certified Container <12.0.12.26 | ||
|
IBM App Connect Enterprise Certified Container <13.0.7.2
IBM / App Connect Enterprise
|
Certified Container <13.0.7.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM App Connect Enterprise Certified Container <12.0.12.26
IBM / App Connect Enterprise
|
Certified Container <12.0.12.26 | ||
|
IBM App Connect Enterprise Certified Container <13.0.7.2
IBM / App Connect Enterprise
|
Certified Container <13.0.7.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM App Connect Enterprise Certified Container <12.0.12.26
IBM / App Connect Enterprise
|
Certified Container <12.0.12.26 | ||
|
IBM App Connect Enterprise Certified Container <13.0.7.2
IBM / App Connect Enterprise
|
Certified Container <13.0.7.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM App Connect Enterprise Certified Container <12.0.12.26
IBM / App Connect Enterprise
|
Certified Container <12.0.12.26 | ||
|
IBM App Connect Enterprise Certified Container <13.0.7.2
IBM / App Connect Enterprise
|
Certified Container <13.0.7.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM App Connect Enterprise Certified Container <12.0.12.26
IBM / App Connect Enterprise
|
Certified Container <12.0.12.26 | ||
|
IBM App Connect Enterprise Certified Container <13.0.7.2
IBM / App Connect Enterprise
|
Certified Container <13.0.7.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM App Connect Enterprise Certified Container <12.0.12.26
IBM / App Connect Enterprise
|
Certified Container <12.0.12.26 | ||
|
IBM App Connect Enterprise Certified Container <13.0.7.2
IBM / App Connect Enterprise
|
Certified Container <13.0.7.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM App Connect Enterprise Certified Container <12.0.12.26
IBM / App Connect Enterprise
|
Certified Container <12.0.12.26 | ||
|
IBM App Connect Enterprise Certified Container <13.0.7.2
IBM / App Connect Enterprise
|
Certified Container <13.0.7.2 | ||
|
IBM App Connect Enterprise Certified Container <12.0.24
IBM / App Connect Enterprise
|
Certified Container <12.0.24 | ||
|
IBM App Connect Enterprise Certified Container <13.1.0
IBM / App Connect Enterprise
|
Certified Container <13.1.0 |
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM App Connect Enterprise kombiniert die branchenbew\u00e4hrten Technologien des IBM Integration Bus mit Cloud-nativen Technologien.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in IBM App Connect Enterprise ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Daten zu manipulieren, Cross-Site-Scripting-Angriffe durchzuf\u00fchren, vertrauliche Informationen offenzulegen oder einen Denial-of-Service-Zustand auszul\u00f6sen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-1654 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1654.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-1654 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1654"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7273703 vom 2026-05-21",
"url": "https://www.ibm.com/support/pages/node/7273703"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7273774 vom 2026-05-21",
"url": "https://www.ibm.com/support/pages/node/7273774"
}
],
"source_lang": "en-US",
"title": "IBM App Connect Enterprise: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-05-21T22:00:00.000+00:00",
"generator": {
"date": "2026-05-22T10:40:37.473+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.6.0"
}
},
"id": "WID-SEC-W-2026-1654",
"initial_release_date": "2026-05-21T22:00:00.000+00:00",
"revision_history": [
{
"date": "2026-05-21T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "Certified Container \u003c13.1.0",
"product": {
"name": "IBM App Connect Enterprise Certified Container \u003c13.1.0",
"product_id": "T054531"
}
},
{
"category": "product_version",
"name": "Certified Container 13.1.0",
"product": {
"name": "IBM App Connect Enterprise Certified Container 13.1.0",
"product_id": "T054531-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:certified_container__13.1.0"
}
}
},
{
"category": "product_version_range",
"name": "Certified Container \u003c12.0.24",
"product": {
"name": "IBM App Connect Enterprise Certified Container \u003c12.0.24",
"product_id": "T054532"
}
},
{
"category": "product_version",
"name": "Certified Container 12.0.24",
"product": {
"name": "IBM App Connect Enterprise Certified Container 12.0.24",
"product_id": "T054532-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:certified_container__12.0.24"
}
}
},
{
"category": "product_version_range",
"name": "Certified Container \u003c13.0.7.2",
"product": {
"name": "IBM App Connect Enterprise Certified Container \u003c13.0.7.2",
"product_id": "T054533"
}
},
{
"category": "product_version",
"name": "Certified Container 13.0.7.2",
"product": {
"name": "IBM App Connect Enterprise Certified Container 13.0.7.2",
"product_id": "T054533-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:certified_container__13.0.7.2"
}
}
},
{
"category": "product_version_range",
"name": "Certified Container \u003c12.0.12.26",
"product": {
"name": "IBM App Connect Enterprise Certified Container \u003c12.0.12.26",
"product_id": "T054534"
}
},
{
"category": "product_version",
"name": "Certified Container 12.0.12.26",
"product": {
"name": "IBM App Connect Enterprise Certified Container 12.0.12.26",
"product_id": "T054534-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:certified_container__12.0.12.26"
}
}
}
],
"category": "product_name",
"name": "App Connect Enterprise"
}
],
"category": "vendor",
"name": "IBM"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-23337",
"product_status": {
"known_affected": [
"T054534",
"T054533",
"T054532",
"T054531"
]
},
"release_date": "2026-05-21T22:00:00.000+00:00",
"title": "CVE-2021-23337"
},
{
"cve": "CVE-2026-27141",
"product_status": {
"known_affected": [
"T054534",
"T054533",
"T054532",
"T054531"
]
},
"release_date": "2026-05-21T22:00:00.000+00:00",
"title": "CVE-2026-27141"
},
{
"cve": "CVE-2026-4800",
"product_status": {
"known_affected": [
"T054534",
"T054533",
"T054532",
"T054531"
]
},
"release_date": "2026-05-21T22:00:00.000+00:00",
"title": "CVE-2026-4800"
},
{
"cve": "CVE-2026-33750",
"product_status": {
"known_affected": [
"T054534",
"T054533"
]
},
"release_date": "2026-05-21T22:00:00.000+00:00",
"title": "CVE-2026-33750"
},
{
"cve": "CVE-2026-40186",
"product_status": {
"known_affected": [
"T054534",
"T054533"
]
},
"release_date": "2026-05-21T22:00:00.000+00:00",
"title": "CVE-2026-40186"
},
{
"cve": "CVE-2026-40895",
"product_status": {
"known_affected": [
"T054534",
"T054533"
]
},
"release_date": "2026-05-21T22:00:00.000+00:00",
"title": "CVE-2026-40895"
},
{
"cve": "CVE-2026-41305",
"product_status": {
"known_affected": [
"T054534",
"T054533"
]
},
"release_date": "2026-05-21T22:00:00.000+00:00",
"title": "CVE-2026-41305"
},
{
"cve": "CVE-2026-41650",
"product_status": {
"known_affected": [
"T054534",
"T054533"
]
},
"release_date": "2026-05-21T22:00:00.000+00:00",
"title": "CVE-2026-41650"
},
{
"cve": "CVE-2026-42264",
"product_status": {
"known_affected": [
"T054534",
"T054533"
]
},
"release_date": "2026-05-21T22:00:00.000+00:00",
"title": "CVE-2026-42264"
},
{
"cve": "CVE-2026-41242",
"product_status": {
"known_affected": [
"T054534",
"T054533",
"T054532",
"T054531"
]
},
"release_date": "2026-05-21T22:00:00.000+00:00",
"title": "CVE-2026-41242"
}
]
}
WID-SEC-W-2026-1687
Vulnerability from csaf_certbund - Published: 2026-05-26 22:00 - Updated: 2026-05-26 22:00| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM License Metric Tool 9.2
IBM / License Metric Tool
|
cpe:/a:ibm:license_metric_tool:9.2
|
9.2 |
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Das IBM License Metric Tool dient der Lizenzverwaltung f\u00fcr IBM Produkte.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in IBM License Metric Tool ausnutzen, um einen nicht n\u00e4her spezifizierten Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-1687 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1687.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-1687 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1687"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7273983 vom 2026-05-26",
"url": "https://www.ibm.com/support/pages/node/7273983"
}
],
"source_lang": "en-US",
"title": "IBM License Metric Tool: Mehrere Schwachstellen erm\u00f6glichen nicht spezifizierten Angriff",
"tracking": {
"current_release_date": "2026-05-26T22:00:00.000+00:00",
"generator": {
"date": "2026-05-27T11:20:42.217+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.6.0"
}
},
"id": "WID-SEC-W-2026-1687",
"initial_release_date": "2026-05-26T22:00:00.000+00:00",
"revision_history": [
{
"date": "2026-05-26T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "9.2",
"product": {
"name": "IBM License Metric Tool 9.2",
"product_id": "T031605",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:license_metric_tool:9.2"
}
}
}
],
"category": "product_name",
"name": "License Metric Tool"
}
],
"category": "vendor",
"name": "IBM"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-26141",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2024-26141"
},
{
"cve": "CVE-2024-29371",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2024-29371"
},
{
"cve": "CVE-2024-34459",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2024-34459"
},
{
"cve": "CVE-2025-14917",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2025-14917"
},
{
"cve": "CVE-2025-14923",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2025-14923"
},
{
"cve": "CVE-2025-62718",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2025-62718"
},
{
"cve": "CVE-2025-6490",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2025-6490"
},
{
"cve": "CVE-2026-0636",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-0636"
},
{
"cve": "CVE-2026-1561",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-1561"
},
{
"cve": "CVE-2026-22007",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-22007"
},
{
"cve": "CVE-2026-22008",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-22008"
},
{
"cve": "CVE-2026-22013",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-22013"
},
{
"cve": "CVE-2026-22016",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-22016"
},
{
"cve": "CVE-2026-22018",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-22018"
},
{
"cve": "CVE-2026-22021",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-22021"
},
{
"cve": "CVE-2026-23865",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-23865"
},
{
"cve": "CVE-2026-23907",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-23907"
},
{
"cve": "CVE-2026-26961",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-26961"
},
{
"cve": "CVE-2026-33168",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-33168"
},
{
"cve": "CVE-2026-33169",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-33169"
},
{
"cve": "CVE-2026-33170",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-33170"
},
{
"cve": "CVE-2026-33173",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-33173"
},
{
"cve": "CVE-2026-33174",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-33174"
},
{
"cve": "CVE-2026-33176",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-33176"
},
{
"cve": "CVE-2026-33195",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-33195"
},
{
"cve": "CVE-2026-33202",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-33202"
},
{
"cve": "CVE-2026-33929",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-33929"
},
{
"cve": "CVE-2026-34230",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-34230"
},
{
"cve": "CVE-2026-34268",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-34268"
},
{
"cve": "CVE-2026-34282",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-34282"
},
{
"cve": "CVE-2026-34763",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-34763"
},
{
"cve": "CVE-2026-34785",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-34785"
},
{
"cve": "CVE-2026-34786",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-34786"
},
{
"cve": "CVE-2026-34826",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-34826"
},
{
"cve": "CVE-2026-34829",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-34829"
},
{
"cve": "CVE-2026-34830",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-34830"
},
{
"cve": "CVE-2026-34831",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-34831"
},
{
"cve": "CVE-2026-35611",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-35611"
},
{
"cve": "CVE-2026-42033",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-42033"
},
{
"cve": "CVE-2026-42034",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-42034"
},
{
"cve": "CVE-2026-42035",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-42035"
},
{
"cve": "CVE-2026-42036",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-42036"
},
{
"cve": "CVE-2026-42037",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-42037"
},
{
"cve": "CVE-2026-42038",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-42038"
},
{
"cve": "CVE-2026-42039",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-42039"
},
{
"cve": "CVE-2026-42040",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-42040"
},
{
"cve": "CVE-2026-42041",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-42041"
},
{
"cve": "CVE-2026-42042",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-42042"
},
{
"cve": "CVE-2026-42043",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-42043"
},
{
"cve": "CVE-2026-42044",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-42044"
},
{
"cve": "CVE-2026-42264",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-42264"
},
{
"cve": "CVE-2026-5588",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-5588"
},
{
"cve": "CVE-2026-6918",
"product_status": {
"known_affected": [
"T031605"
]
},
"release_date": "2026-05-26T22:00:00.000+00:00",
"title": "CVE-2026-6918"
}
]
}
WID-SEC-W-2026-1955
Vulnerability from csaf_certbund - Published: 2026-06-16 22:00 - Updated: 2026-06-17 22:00| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Atlassian Crucible <4.9.11
Atlassian / Crucible
|
<4.9.11 | ||
|
Atlassian Fisheye <4.9.11
Atlassian / Fisheye
|
<4.9.11 | ||
|
Atlassian Confluence Data Center <9.2.21
Atlassian / Confluence
|
Data Center <9.2.21 | ||
|
Atlassian Confluence Data Center <10.2.13
Atlassian / Confluence
|
Data Center <10.2.13 | ||
|
Atlassian Bitbucket Data Center <10.3.1
Atlassian / Bitbucket
|
Data Center <10.3.1 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Atlassian Bitbucket Data Center <9.4.21
Atlassian / Bitbucket
|
Data Center <9.4.21 | ||
|
Atlassian Bitbucket Data Center <10.2.4
Atlassian / Bitbucket
|
Data Center <10.2.4 | ||
|
Atlassian Jira Service Management Data Center and Server <10.3.22
Atlassian / Jira
|
Service Management Data Center and Server <10.3.22 | ||
|
Atlassian Jira Service Management Data Center and Server <11.3.7
Atlassian / Jira
|
Service Management Data Center and Server <11.3.7 | ||
|
Atlassian Bamboo Data Center <12.1.8
Atlassian / Bamboo
|
Data Center <12.1.8 | ||
|
Atlassian Jira Data Center <10.3.22
Atlassian / Jira
|
Data Center <10.3.22 | ||
|
Atlassian Jira Data Center <11.3.7
Atlassian / Jira
|
Data Center <11.3.7 | ||
|
Atlassian Bamboo Data Center <10.2.20
Atlassian / Bamboo
|
Data Center <10.2.20 |
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Bamboo ist ein Werkzeug zur kontinuierlichen Integration und Bereitstellung, das automatisierte Builds, Tests und Freigaben in einem einzigen Arbeitsablauf verbindet.\r\nBitbucket ist ein Git-Server zur Sourcecode-Versionskontrolle.\r\nConfluence ist eine kommerzielle Wiki-Software.\r\nFisheye ist ein Quellcode-Repository-Browser f\u00fcr Unternehmensteams. \r\nCrucible ist eine Code-Review-L\u00f6sung f\u00fcr Unternehmensteams.\r\nJira ist eine Webanwendung zur Softwareentwicklung.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in Atlassian Bamboo, Bitbucket, Confluence, Fisheye, Crucible, Jira und Jira Service Management ausnutzen, um beliebigen Code auszuf\u00fchren, erweiterte Berechtigungen zu erlangen, Sicherheitsma\u00dfnahmen zu umgehen, Daten zu manipulieren, vertrauliche Informationen offenzulegen oder einen Denial-of-Service-Zustand auszul\u00f6sen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-1955 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1955.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-1955 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1955"
},
{
"category": "external",
"summary": "Atlassian Security Bulletin Juni vom 2026-06-16",
"url": "https://confluence.atlassian.com/security/security-bulletin-june-16-2026-1796309326.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:22380 vom 2026-06-18",
"url": "https://access.redhat.com/errata/RHSA-2026:22380"
}
],
"source_lang": "en-US",
"title": "Atlassian Bamboo, Bitbucket, Confluence, Fisheye, Crucible, Jira und Jira Service Management: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-06-17T22:00:00.000+00:00",
"generator": {
"date": "2026-06-18T07:59:55.017+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.6.0"
}
},
"id": "WID-SEC-W-2026-1955",
"initial_release_date": "2026-06-16T22:00:00.000+00:00",
"revision_history": [
{
"date": "2026-06-16T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2026-06-17T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "Data Center \u003c12.1.8",
"product": {
"name": "Atlassian Bamboo Data Center \u003c12.1.8",
"product_id": "T055489"
}
},
{
"category": "product_version",
"name": "Data Center 12.1.8",
"product": {
"name": "Atlassian Bamboo Data Center 12.1.8",
"product_id": "T055489-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:bamboo:data_center__12.1.8"
}
}
},
{
"category": "product_version_range",
"name": "Data Center \u003c10.2.20",
"product": {
"name": "Atlassian Bamboo Data Center \u003c10.2.20",
"product_id": "T055490"
}
},
{
"category": "product_version",
"name": "Data Center 10.2.20",
"product": {
"name": "Atlassian Bamboo Data Center 10.2.20",
"product_id": "T055490-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:bamboo:data_center__10.2.20"
}
}
}
],
"category": "product_name",
"name": "Bamboo"
},
{
"branches": [
{
"category": "product_version_range",
"name": "Data Center \u003c10.2.4",
"product": {
"name": "Atlassian Bitbucket Data Center \u003c10.2.4",
"product_id": "T055492"
}
},
{
"category": "product_version",
"name": "Data Center 10.2.4",
"product": {
"name": "Atlassian Bitbucket Data Center 10.2.4",
"product_id": "T055492-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:bitbucket:data_center__10.2.4"
}
}
},
{
"category": "product_version_range",
"name": "Data Center \u003c9.4.21",
"product": {
"name": "Atlassian Bitbucket Data Center \u003c9.4.21",
"product_id": "T055493"
}
},
{
"category": "product_version",
"name": "Data Center 9.4.21",
"product": {
"name": "Atlassian Bitbucket Data Center 9.4.21",
"product_id": "T055493-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:bitbucket:data_center__9.4.21"
}
}
},
{
"category": "product_version_range",
"name": "Data Center \u003c10.3.1",
"product": {
"name": "Atlassian Bitbucket Data Center \u003c10.3.1",
"product_id": "T055494"
}
},
{
"category": "product_version",
"name": "Data Center 10.3.1",
"product": {
"name": "Atlassian Bitbucket Data Center 10.3.1",
"product_id": "T055494-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:bitbucket:data_center__10.3.1"
}
}
}
],
"category": "product_name",
"name": "Bitbucket"
},
{
"branches": [
{
"category": "product_version_range",
"name": "Data Center \u003c10.2.13",
"product": {
"name": "Atlassian Confluence Data Center \u003c10.2.13",
"product_id": "T055495"
}
},
{
"category": "product_version",
"name": "Data Center 10.2.13",
"product": {
"name": "Atlassian Confluence Data Center 10.2.13",
"product_id": "T055495-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:confluence:data_center__10.2.13"
}
}
},
{
"category": "product_version_range",
"name": "Data Center \u003c9.2.21",
"product": {
"name": "Atlassian Confluence Data Center \u003c9.2.21",
"product_id": "T055496"
}
},
{
"category": "product_version",
"name": "Data Center 9.2.21",
"product": {
"name": "Atlassian Confluence Data Center 9.2.21",
"product_id": "T055496-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:confluence:data_center__9.2.21"
}
}
}
],
"category": "product_name",
"name": "Confluence"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c4.9.11",
"product": {
"name": "Atlassian Crucible \u003c4.9.11",
"product_id": "T055498"
}
},
{
"category": "product_version",
"name": "4.9.11",
"product": {
"name": "Atlassian Crucible 4.9.11",
"product_id": "T055498-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:crucible:4.9.11"
}
}
}
],
"category": "product_name",
"name": "Crucible"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c4.9.11",
"product": {
"name": "Atlassian Fisheye \u003c4.9.11",
"product_id": "T055497"
}
},
{
"category": "product_version",
"name": "4.9.11",
"product": {
"name": "Atlassian Fisheye 4.9.11",
"product_id": "T055497-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:fisheye:4.9.11"
}
}
}
],
"category": "product_name",
"name": "Fisheye"
},
{
"branches": [
{
"category": "product_version_range",
"name": "Data Center \u003c11.3.7",
"product": {
"name": "Atlassian Jira Data Center \u003c11.3.7",
"product_id": "T055499"
}
},
{
"category": "product_version",
"name": "Data Center 11.3.7",
"product": {
"name": "Atlassian Jira Data Center 11.3.7",
"product_id": "T055499-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:jira:data_center__11.3.7"
}
}
},
{
"category": "product_version_range",
"name": "Data Center \u003c10.3.22",
"product": {
"name": "Atlassian Jira Data Center \u003c10.3.22",
"product_id": "T055500"
}
},
{
"category": "product_version",
"name": "Data Center 10.3.22",
"product": {
"name": "Atlassian Jira Data Center 10.3.22",
"product_id": "T055500-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:jira:data_center__10.3.22"
}
}
},
{
"category": "product_version_range",
"name": "Service Management Data Center and Server \u003c11.3.7",
"product": {
"name": "Atlassian Jira Service Management Data Center and Server \u003c11.3.7",
"product_id": "T055501"
}
},
{
"category": "product_version",
"name": "Service Management Data Center and Server 11.3.7",
"product": {
"name": "Atlassian Jira Service Management Data Center and Server 11.3.7",
"product_id": "T055501-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:jira:service_management_data_center_and_server__11.3.7"
}
}
},
{
"category": "product_version_range",
"name": "Service Management Data Center and Server \u003c10.3.22",
"product": {
"name": "Atlassian Jira Service Management Data Center and Server \u003c10.3.22",
"product_id": "T055502"
}
},
{
"category": "product_version",
"name": "Service Management Data Center and Server 10.3.22",
"product": {
"name": "Atlassian Jira Service Management Data Center and Server 10.3.22",
"product_id": "T055502-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:jira:service_management_data_center_and_server__10.3.22"
}
}
}
],
"category": "product_name",
"name": "Jira"
}
],
"category": "vendor",
"name": "Atlassian"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-11272",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2019-11272"
},
{
"cve": "CVE-2021-3803",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2021-3803"
},
{
"cve": "CVE-2022-1471",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2022-1471"
},
{
"cve": "CVE-2022-22965",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2022-22965"
},
{
"cve": "CVE-2022-22978",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2022-22978"
},
{
"cve": "CVE-2022-31692",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2022-31692"
},
{
"cve": "CVE-2024-22257",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2024-22257"
},
{
"cve": "CVE-2025-22228",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2025-22228"
},
{
"cve": "CVE-2026-22732",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-22732"
},
{
"cve": "CVE-2026-24734",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-24734"
},
{
"cve": "CVE-2026-26996",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-26996"
},
{
"cve": "CVE-2026-27903",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-27903"
},
{
"cve": "CVE-2026-27904",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-27904"
},
{
"cve": "CVE-2026-29129",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-29129"
},
{
"cve": "CVE-2026-33870",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-33870"
},
{
"cve": "CVE-2026-33871",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-33871"
},
{
"cve": "CVE-2026-34077",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-34077"
},
{
"cve": "CVE-2026-34486",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-34486"
},
{
"cve": "CVE-2026-34487",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-34487"
},
{
"cve": "CVE-2026-40175",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-40175"
},
{
"cve": "CVE-2026-41044",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-41044"
},
{
"cve": "CVE-2026-41284",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-41284"
},
{
"cve": "CVE-2026-41293",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-41293"
},
{
"cve": "CVE-2026-42033",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42033"
},
{
"cve": "CVE-2026-42035",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42035"
},
{
"cve": "CVE-2026-42038",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42038"
},
{
"cve": "CVE-2026-42043",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42043"
},
{
"cve": "CVE-2026-42198",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42198"
},
{
"cve": "CVE-2026-42211",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42211"
},
{
"cve": "CVE-2026-42264",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42264"
},
{
"cve": "CVE-2026-42342",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42342"
},
{
"cve": "CVE-2026-42498",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42498"
},
{
"cve": "CVE-2026-42579",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42579"
},
{
"cve": "CVE-2026-42581",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42581"
},
{
"cve": "CVE-2026-42583",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42583"
},
{
"cve": "CVE-2026-42584",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42584"
},
{
"cve": "CVE-2026-42585",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42585"
},
{
"cve": "CVE-2026-42587",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-42587"
},
{
"cve": "CVE-2026-43512",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-43512"
},
{
"cve": "CVE-2026-43513",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-43513"
},
{
"cve": "CVE-2026-43515",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-43515"
},
{
"cve": "CVE-2026-44486",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-44486"
},
{
"cve": "CVE-2026-44487",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-44487"
},
{
"cve": "CVE-2026-44488",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-44488"
},
{
"cve": "CVE-2026-44492",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-44492"
},
{
"cve": "CVE-2026-44495",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-44495"
},
{
"cve": "CVE-2026-44496",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-44496"
},
{
"cve": "CVE-2026-45149",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-45149"
},
{
"cve": "CVE-2026-45736",
"product_status": {
"known_affected": [
"T055498",
"T055497",
"T055496",
"T055495",
"T055494",
"67646",
"T055493",
"T055492",
"T055502",
"T055501",
"T055489",
"T055500",
"T055499",
"T055490"
]
},
"release_date": "2026-06-16T22:00:00.000+00:00",
"title": "CVE-2026-45736"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.