RHSA-2023:7725
Vulnerability from csaf_redhat - Published: 2023-12-11 15:09 - Updated: 2026-03-18 16:18Summary
Red Hat Security Advisory: RHACS 4.3 enhancement and security update
Severity
Moderate
Notes
Topic: Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes bug and security fixes.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: This release of RHACS 4.3.1 provides the following bug fixes:
* Fixed an issue where a user could not log in if a role mapped to the user did not have at least `read` access for the `Access` permission.
* Fixed an issue with editing user-defined vulnerability reports in version 4.3 that were created in a previous version and linked to a specific report scope. When editing the report in version 4.3, the report scope reference was missing, and the system returned an error message.
* Updated and removed golang dependencies to address reported vulnerabilities, including false positives.
It provides the following security fix(es):
* dexidp: gaining access to applications accepting that token (CVE-2022-39222)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Dex, an identity service that uses OpenID Connect to drive authentication for other apps. This issue may allow an attacker to make a victim navigate to a malicious website and guide them through the OIDC flow, stealing the OAuth authorization code in the process. The authorization code then can be exchanged by the attacker for a token, gaining access to applications accepting that token. Version 2.35.0 has introduced a fix for this issue; Users are advised to upgrade.
6.5 (Medium)
Vendor Fix
If you are using an earlier version of RHACS 4.3, you are advised to upgrade to patch release 4.3.1.
https://access.redhat.com/errata/RHSA-2023:7725
References
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes bug and security fixes.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.3.1 provides the following bug fixes:\n\n* Fixed an issue where a user could not log in if a role mapped to the user did not have at least `read` access for the `Access` permission.\n\n* Fixed an issue with editing user-defined vulnerability reports in version 4.3 that were created in a previous version and linked to a specific report scope. When editing the report in version 4.3, the report scope reference was missing, and the system returned an error message.\n\n* Updated and removed golang dependencies to address reported vulnerabilities, including false positives.\n\nIt provides the following security fix(es):\n\n* dexidp: gaining access to applications accepting that token (CVE-2022-39222)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:7725",
"url": "https://access.redhat.com/errata/RHSA-2023:7725"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://docs.openshift.com/acs/4.3/release_notes/43-release-notes.html",
"url": "https://docs.openshift.com/acs/4.3/release_notes/43-release-notes.html"
},
{
"category": "external",
"summary": "2253625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253625"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_7725.json"
}
],
"title": "Red Hat Security Advisory: RHACS 4.3 enhancement and security update",
"tracking": {
"current_release_date": "2026-03-18T16:18:31+00:00",
"generator": {
"date": "2026-03-18T16:18:31+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.3"
}
},
"id": "RHSA-2023:7725",
"initial_release_date": "2023-12-11T15:09:44+00:00",
"revision_history": [
{
"date": "2023-12-11T15:09:44+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-12-11T15:09:45+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-03-18T16:18:31+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.3 for RHEL 8",
"product": {
"name": "RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.3::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2e1f7f206a43b16b9eec84a9138d054a1f8c95c9b620d05160ac32bce119e78b_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2e1f7f206a43b16b9eec84a9138d054a1f8c95c9b620d05160ac32bce119e78b_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2e1f7f206a43b16b9eec84a9138d054a1f8c95c9b620d05160ac32bce119e78b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:2e1f7f206a43b16b9eec84a9138d054a1f8c95c9b620d05160ac32bce119e78b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.3.1-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:60aaece3ac376416a47e01d834a769609891c8198a1b95bd0bf1a773b79a7cf0_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:60aaece3ac376416a47e01d834a769609891c8198a1b95bd0bf1a773b79a7cf0_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:60aaece3ac376416a47e01d834a769609891c8198a1b95bd0bf1a773b79a7cf0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:60aaece3ac376416a47e01d834a769609891c8198a1b95bd0bf1a773b79a7cf0?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.3.1-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:72a9645719f747b8d2e6b4632f0afa257d14ba1a582df1ccd989d52f98a1dcca_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:72a9645719f747b8d2e6b4632f0afa257d14ba1a582df1ccd989d52f98a1dcca_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:72a9645719f747b8d2e6b4632f0afa257d14ba1a582df1ccd989d52f98a1dcca_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:72a9645719f747b8d2e6b4632f0afa257d14ba1a582df1ccd989d52f98a1dcca?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.3.1-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:5ecf3c2aca847d8df0830ab698fe0e4b1a0216f04495d7e3b6a03440c5359d5a_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:5ecf3c2aca847d8df0830ab698fe0e4b1a0216f04495d7e3b6a03440c5359d5a_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:5ecf3c2aca847d8df0830ab698fe0e4b1a0216f04495d7e3b6a03440c5359d5a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:5ecf3c2aca847d8df0830ab698fe0e4b1a0216f04495d7e3b6a03440c5359d5a?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.3.1-9"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:3a37d9f7751f0ec55eed03df0acd851c0a0c83249aee98850293b94f8dd2eb04_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:3a37d9f7751f0ec55eed03df0acd851c0a0c83249aee98850293b94f8dd2eb04_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:3a37d9f7751f0ec55eed03df0acd851c0a0c83249aee98850293b94f8dd2eb04_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:3a37d9f7751f0ec55eed03df0acd851c0a0c83249aee98850293b94f8dd2eb04?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.3.1-10"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9869d3e2b2d08232aab2f3af99467758b4b95e7d4f72fed9ac6bdd29eb7da81d_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9869d3e2b2d08232aab2f3af99467758b4b95e7d4f72fed9ac6bdd29eb7da81d_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9869d3e2b2d08232aab2f3af99467758b4b95e7d4f72fed9ac6bdd29eb7da81d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:9869d3e2b2d08232aab2f3af99467758b4b95e7d4f72fed9ac6bdd29eb7da81d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.3.1-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:63817765b309bccdaf47a4ed3ee0cd3c00f831e11605616da0e177e4090b1604_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:63817765b309bccdaf47a4ed3ee0cd3c00f831e11605616da0e177e4090b1604_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:63817765b309bccdaf47a4ed3ee0cd3c00f831e11605616da0e177e4090b1604_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:63817765b309bccdaf47a4ed3ee0cd3c00f831e11605616da0e177e4090b1604?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.3.1-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:df6a5a8e9a7a0f412178ef9afd9d0788fde0023e21beb134dc2b5675a9b11a35_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:df6a5a8e9a7a0f412178ef9afd9d0788fde0023e21beb134dc2b5675a9b11a35_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:df6a5a8e9a7a0f412178ef9afd9d0788fde0023e21beb134dc2b5675a9b11a35_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:df6a5a8e9a7a0f412178ef9afd9d0788fde0023e21beb134dc2b5675a9b11a35?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.3.1-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:70e7614d3325f6585924b90560f4683bbe35399269509e56aa4f3e9eedf14797_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:70e7614d3325f6585924b90560f4683bbe35399269509e56aa4f3e9eedf14797_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:70e7614d3325f6585924b90560f4683bbe35399269509e56aa4f3e9eedf14797_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:70e7614d3325f6585924b90560f4683bbe35399269509e56aa4f3e9eedf14797?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.3.1-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9048d490f3da588e6c674c5e4e3f164aaee6729ba6cd11ef9427719593bb0b93_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9048d490f3da588e6c674c5e4e3f164aaee6729ba6cd11ef9427719593bb0b93_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9048d490f3da588e6c674c5e4e3f164aaee6729ba6cd11ef9427719593bb0b93_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:9048d490f3da588e6c674c5e4e3f164aaee6729ba6cd11ef9427719593bb0b93?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.3.1-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:692b9eafa5bbcea2033197c0537dfbbf21bbcd2a75f3b311912193405ba4671d_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:692b9eafa5bbcea2033197c0537dfbbf21bbcd2a75f3b311912193405ba4671d_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:692b9eafa5bbcea2033197c0537dfbbf21bbcd2a75f3b311912193405ba4671d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:692b9eafa5bbcea2033197c0537dfbbf21bbcd2a75f3b311912193405ba4671d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.3.1-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dfd07bd22ae9ff4a14b06009262650b4eedca84551aa02e0c4ae5e14460c2ed5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dfd07bd22ae9ff4a14b06009262650b4eedca84551aa02e0c4ae5e14460c2ed5_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dfd07bd22ae9ff4a14b06009262650b4eedca84551aa02e0c4ae5e14460c2ed5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:dfd07bd22ae9ff4a14b06009262650b4eedca84551aa02e0c4ae5e14460c2ed5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.3.1-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:de915faffadfd07bb41e612742380d86138049bd5cc5d51e8d2d81ec5751b29f_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:de915faffadfd07bb41e612742380d86138049bd5cc5d51e8d2d81ec5751b29f_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:de915faffadfd07bb41e612742380d86138049bd5cc5d51e8d2d81ec5751b29f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:de915faffadfd07bb41e612742380d86138049bd5cc5d51e8d2d81ec5751b29f?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.3.1-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e2d5f872de74369adde8211f2e002882c2a23e37e817b182fb0721a92a8b3d68_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e2d5f872de74369adde8211f2e002882c2a23e37e817b182fb0721a92a8b3d68_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e2d5f872de74369adde8211f2e002882c2a23e37e817b182fb0721a92a8b3d68_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:e2d5f872de74369adde8211f2e002882c2a23e37e817b182fb0721a92a8b3d68?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.3.1-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:d25ed99610b530ed8c0b6ba937a6c0822e72ae61022f57c26f0cc775fabf6a21_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:d25ed99610b530ed8c0b6ba937a6c0822e72ae61022f57c26f0cc775fabf6a21_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:d25ed99610b530ed8c0b6ba937a6c0822e72ae61022f57c26f0cc775fabf6a21_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:d25ed99610b530ed8c0b6ba937a6c0822e72ae61022f57c26f0cc775fabf6a21?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.3.1-9"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:90bdfd8fba74a36a81c52c2fe7abbd79158d1482699bda52af7e2caf0803b3fc_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:90bdfd8fba74a36a81c52c2fe7abbd79158d1482699bda52af7e2caf0803b3fc_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:90bdfd8fba74a36a81c52c2fe7abbd79158d1482699bda52af7e2caf0803b3fc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:90bdfd8fba74a36a81c52c2fe7abbd79158d1482699bda52af7e2caf0803b3fc?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.3.1-10"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:acf7dabe654ffee7d6e944f810e6ab19d62ae21e5a96499d1b3898cc56d5da91_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:acf7dabe654ffee7d6e944f810e6ab19d62ae21e5a96499d1b3898cc56d5da91_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:acf7dabe654ffee7d6e944f810e6ab19d62ae21e5a96499d1b3898cc56d5da91_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:acf7dabe654ffee7d6e944f810e6ab19d62ae21e5a96499d1b3898cc56d5da91?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.3.1-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:788627d59ebeaa64b341f704f8f493a0420c0c681b15ffcd419adf993033dd6c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:788627d59ebeaa64b341f704f8f493a0420c0c681b15ffcd419adf993033dd6c_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:788627d59ebeaa64b341f704f8f493a0420c0c681b15ffcd419adf993033dd6c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:788627d59ebeaa64b341f704f8f493a0420c0c681b15ffcd419adf993033dd6c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.3.1-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d7f729111a93515a15ddad0f4bc69e857d25af89025847551436639e54c011f_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d7f729111a93515a15ddad0f4bc69e857d25af89025847551436639e54c011f_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d7f729111a93515a15ddad0f4bc69e857d25af89025847551436639e54c011f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:9d7f729111a93515a15ddad0f4bc69e857d25af89025847551436639e54c011f?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.3.1-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e8643e1dcf18e4ecda5cf917d5de840e466e19a300aa4c3a2d766d5252bb76b4_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e8643e1dcf18e4ecda5cf917d5de840e466e19a300aa4c3a2d766d5252bb76b4_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e8643e1dcf18e4ecda5cf917d5de840e466e19a300aa4c3a2d766d5252bb76b4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:e8643e1dcf18e4ecda5cf917d5de840e466e19a300aa4c3a2d766d5252bb76b4?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.3.1-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b2f0e4561b9f960675b812fd0721d890e8feb55dbbc9eff7a1fc8cd90c27fd03_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b2f0e4561b9f960675b812fd0721d890e8feb55dbbc9eff7a1fc8cd90c27fd03_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b2f0e4561b9f960675b812fd0721d890e8feb55dbbc9eff7a1fc8cd90c27fd03_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:b2f0e4561b9f960675b812fd0721d890e8feb55dbbc9eff7a1fc8cd90c27fd03?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.3.1-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c5335e389d459d6de8db7fb1fae9aff32ab1efe754751d6a1bd5d81589c146db_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c5335e389d459d6de8db7fb1fae9aff32ab1efe754751d6a1bd5d81589c146db_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c5335e389d459d6de8db7fb1fae9aff32ab1efe754751d6a1bd5d81589c146db_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:c5335e389d459d6de8db7fb1fae9aff32ab1efe754751d6a1bd5d81589c146db?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.3.1-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a5dbf5803835c61387dac05a01a44486a2308a0e9f9f929e88b6a9b3769f8f60_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a5dbf5803835c61387dac05a01a44486a2308a0e9f9f929e88b6a9b3769f8f60_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a5dbf5803835c61387dac05a01a44486a2308a0e9f9f929e88b6a9b3769f8f60_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:a5dbf5803835c61387dac05a01a44486a2308a0e9f9f929e88b6a9b3769f8f60?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.3.1-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6402de73857f6c04a1fd5c770cd3957331b72f696a1945af880f004524b1452b_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6402de73857f6c04a1fd5c770cd3957331b72f696a1945af880f004524b1452b_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6402de73857f6c04a1fd5c770cd3957331b72f696a1945af880f004524b1452b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:6402de73857f6c04a1fd5c770cd3957331b72f696a1945af880f004524b1452b?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.3.1-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:0f559bc90033644e7032cb0a929f55ad4f98177f34d2e1fed5e0d3f2988def4f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:0f559bc90033644e7032cb0a929f55ad4f98177f34d2e1fed5e0d3f2988def4f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:0f559bc90033644e7032cb0a929f55ad4f98177f34d2e1fed5e0d3f2988def4f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:0f559bc90033644e7032cb0a929f55ad4f98177f34d2e1fed5e0d3f2988def4f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.3.1-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:93d6e895f55d2f60c8bf5b10031cc9c025e86f480a7b00cf00dbb54fe4080728_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:93d6e895f55d2f60c8bf5b10031cc9c025e86f480a7b00cf00dbb54fe4080728_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:93d6e895f55d2f60c8bf5b10031cc9c025e86f480a7b00cf00dbb54fe4080728_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:93d6e895f55d2f60c8bf5b10031cc9c025e86f480a7b00cf00dbb54fe4080728?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.3.1-9"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7e704564f53831e7e01c5c8298d42270a49c0dad6327b80832cf34419da00fca_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7e704564f53831e7e01c5c8298d42270a49c0dad6327b80832cf34419da00fca_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:7e704564f53831e7e01c5c8298d42270a49c0dad6327b80832cf34419da00fca_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:7e704564f53831e7e01c5c8298d42270a49c0dad6327b80832cf34419da00fca?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.3.1-10"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0c0638f9f612b93671e798881cdc1205741db4fa08086afa0e3cf57710975586_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0c0638f9f612b93671e798881cdc1205741db4fa08086afa0e3cf57710975586_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0c0638f9f612b93671e798881cdc1205741db4fa08086afa0e3cf57710975586_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:0c0638f9f612b93671e798881cdc1205741db4fa08086afa0e3cf57710975586?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.3.1-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:7744d2530bc26d872030805b583141f2aae75d9b119efa344e025c78a4e8b3c1_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:7744d2530bc26d872030805b583141f2aae75d9b119efa344e025c78a4e8b3c1_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:7744d2530bc26d872030805b583141f2aae75d9b119efa344e025c78a4e8b3c1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:7744d2530bc26d872030805b583141f2aae75d9b119efa344e025c78a4e8b3c1?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.3.1-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:f2e144a772bcf40fc2cc18615a618e534f37af5da46052a94b06ab247f4dc620_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:f2e144a772bcf40fc2cc18615a618e534f37af5da46052a94b06ab247f4dc620_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:f2e144a772bcf40fc2cc18615a618e534f37af5da46052a94b06ab247f4dc620_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:f2e144a772bcf40fc2cc18615a618e534f37af5da46052a94b06ab247f4dc620?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.3.1-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:938280e962b71270c35ad82962ad0c6559c6f6a04b21b4374e193f48bf2ff021_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:938280e962b71270c35ad82962ad0c6559c6f6a04b21b4374e193f48bf2ff021_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:938280e962b71270c35ad82962ad0c6559c6f6a04b21b4374e193f48bf2ff021_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:938280e962b71270c35ad82962ad0c6559c6f6a04b21b4374e193f48bf2ff021?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.3.1-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e5b08b8d62f8912ca0d8650bf15cf0c4e9e648299d3d443d39c14c46bc1282a4_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e5b08b8d62f8912ca0d8650bf15cf0c4e9e648299d3d443d39c14c46bc1282a4_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e5b08b8d62f8912ca0d8650bf15cf0c4e9e648299d3d443d39c14c46bc1282a4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:e5b08b8d62f8912ca0d8650bf15cf0c4e9e648299d3d443d39c14c46bc1282a4?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.3.1-1"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:34b1ddac79932bef05caafa82ff9862b2b9720b07a82e43ba115281e6e837a63_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:34b1ddac79932bef05caafa82ff9862b2b9720b07a82e43ba115281e6e837a63_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:34b1ddac79932bef05caafa82ff9862b2b9720b07a82e43ba115281e6e837a63_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:34b1ddac79932bef05caafa82ff9862b2b9720b07a82e43ba115281e6e837a63?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.3.1-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2e1f7f206a43b16b9eec84a9138d054a1f8c95c9b620d05160ac32bce119e78b_s390x as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2e1f7f206a43b16b9eec84a9138d054a1f8c95c9b620d05160ac32bce119e78b_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:2e1f7f206a43b16b9eec84a9138d054a1f8c95c9b620d05160ac32bce119e78b_s390x",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a5dbf5803835c61387dac05a01a44486a2308a0e9f9f929e88b6a9b3769f8f60_ppc64le as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a5dbf5803835c61387dac05a01a44486a2308a0e9f9f929e88b6a9b3769f8f60_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a5dbf5803835c61387dac05a01a44486a2308a0e9f9f929e88b6a9b3769f8f60_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dfd07bd22ae9ff4a14b06009262650b4eedca84551aa02e0c4ae5e14460c2ed5_amd64 as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dfd07bd22ae9ff4a14b06009262650b4eedca84551aa02e0c4ae5e14460c2ed5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:dfd07bd22ae9ff4a14b06009262650b4eedca84551aa02e0c4ae5e14460c2ed5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:60aaece3ac376416a47e01d834a769609891c8198a1b95bd0bf1a773b79a7cf0_s390x as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-rhel8@sha256:60aaece3ac376416a47e01d834a769609891c8198a1b95bd0bf1a773b79a7cf0_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:60aaece3ac376416a47e01d834a769609891c8198a1b95bd0bf1a773b79a7cf0_s390x",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6402de73857f6c04a1fd5c770cd3957331b72f696a1945af880f004524b1452b_ppc64le as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-rhel8@sha256:6402de73857f6c04a1fd5c770cd3957331b72f696a1945af880f004524b1452b_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6402de73857f6c04a1fd5c770cd3957331b72f696a1945af880f004524b1452b_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:de915faffadfd07bb41e612742380d86138049bd5cc5d51e8d2d81ec5751b29f_amd64 as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-rhel8@sha256:de915faffadfd07bb41e612742380d86138049bd5cc5d51e8d2d81ec5751b29f_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:de915faffadfd07bb41e612742380d86138049bd5cc5d51e8d2d81ec5751b29f_amd64",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:0f559bc90033644e7032cb0a929f55ad4f98177f34d2e1fed5e0d3f2988def4f_ppc64le as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:0f559bc90033644e7032cb0a929f55ad4f98177f34d2e1fed5e0d3f2988def4f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:0f559bc90033644e7032cb0a929f55ad4f98177f34d2e1fed5e0d3f2988def4f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:72a9645719f747b8d2e6b4632f0afa257d14ba1a582df1ccd989d52f98a1dcca_s390x as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:72a9645719f747b8d2e6b4632f0afa257d14ba1a582df1ccd989d52f98a1dcca_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:72a9645719f747b8d2e6b4632f0afa257d14ba1a582df1ccd989d52f98a1dcca_s390x",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e2d5f872de74369adde8211f2e002882c2a23e37e817b182fb0721a92a8b3d68_amd64 as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e2d5f872de74369adde8211f2e002882c2a23e37e817b182fb0721a92a8b3d68_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e2d5f872de74369adde8211f2e002882c2a23e37e817b182fb0721a92a8b3d68_amd64",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:5ecf3c2aca847d8df0830ab698fe0e4b1a0216f04495d7e3b6a03440c5359d5a_s390x as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-main-rhel8@sha256:5ecf3c2aca847d8df0830ab698fe0e4b1a0216f04495d7e3b6a03440c5359d5a_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:5ecf3c2aca847d8df0830ab698fe0e4b1a0216f04495d7e3b6a03440c5359d5a_s390x",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:93d6e895f55d2f60c8bf5b10031cc9c025e86f480a7b00cf00dbb54fe4080728_ppc64le as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-main-rhel8@sha256:93d6e895f55d2f60c8bf5b10031cc9c025e86f480a7b00cf00dbb54fe4080728_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:93d6e895f55d2f60c8bf5b10031cc9c025e86f480a7b00cf00dbb54fe4080728_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:d25ed99610b530ed8c0b6ba937a6c0822e72ae61022f57c26f0cc775fabf6a21_amd64 as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-main-rhel8@sha256:d25ed99610b530ed8c0b6ba937a6c0822e72ae61022f57c26f0cc775fabf6a21_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:d25ed99610b530ed8c0b6ba937a6c0822e72ae61022f57c26f0cc775fabf6a21_amd64",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:3a37d9f7751f0ec55eed03df0acd851c0a0c83249aee98850293b94f8dd2eb04_s390x as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-operator-bundle@sha256:3a37d9f7751f0ec55eed03df0acd851c0a0c83249aee98850293b94f8dd2eb04_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:3a37d9f7751f0ec55eed03df0acd851c0a0c83249aee98850293b94f8dd2eb04_s390x",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7e704564f53831e7e01c5c8298d42270a49c0dad6327b80832cf34419da00fca_ppc64le as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-operator-bundle@sha256:7e704564f53831e7e01c5c8298d42270a49c0dad6327b80832cf34419da00fca_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:7e704564f53831e7e01c5c8298d42270a49c0dad6327b80832cf34419da00fca_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:90bdfd8fba74a36a81c52c2fe7abbd79158d1482699bda52af7e2caf0803b3fc_amd64 as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-operator-bundle@sha256:90bdfd8fba74a36a81c52c2fe7abbd79158d1482699bda52af7e2caf0803b3fc_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:90bdfd8fba74a36a81c52c2fe7abbd79158d1482699bda52af7e2caf0803b3fc_amd64",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0c0638f9f612b93671e798881cdc1205741db4fa08086afa0e3cf57710975586_ppc64le as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-rhel8-operator@sha256:0c0638f9f612b93671e798881cdc1205741db4fa08086afa0e3cf57710975586_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:0c0638f9f612b93671e798881cdc1205741db4fa08086afa0e3cf57710975586_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9869d3e2b2d08232aab2f3af99467758b4b95e7d4f72fed9ac6bdd29eb7da81d_s390x as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-rhel8-operator@sha256:9869d3e2b2d08232aab2f3af99467758b4b95e7d4f72fed9ac6bdd29eb7da81d_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:9869d3e2b2d08232aab2f3af99467758b4b95e7d4f72fed9ac6bdd29eb7da81d_s390x",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:acf7dabe654ffee7d6e944f810e6ab19d62ae21e5a96499d1b3898cc56d5da91_amd64 as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-rhel8-operator@sha256:acf7dabe654ffee7d6e944f810e6ab19d62ae21e5a96499d1b3898cc56d5da91_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:acf7dabe654ffee7d6e944f810e6ab19d62ae21e5a96499d1b3898cc56d5da91_amd64",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:63817765b309bccdaf47a4ed3ee0cd3c00f831e11605616da0e177e4090b1604_s390x as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:63817765b309bccdaf47a4ed3ee0cd3c00f831e11605616da0e177e4090b1604_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:63817765b309bccdaf47a4ed3ee0cd3c00f831e11605616da0e177e4090b1604_s390x",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:7744d2530bc26d872030805b583141f2aae75d9b119efa344e025c78a4e8b3c1_ppc64le as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:7744d2530bc26d872030805b583141f2aae75d9b119efa344e025c78a4e8b3c1_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:7744d2530bc26d872030805b583141f2aae75d9b119efa344e025c78a4e8b3c1_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:788627d59ebeaa64b341f704f8f493a0420c0c681b15ffcd419adf993033dd6c_amd64 as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:788627d59ebeaa64b341f704f8f493a0420c0c681b15ffcd419adf993033dd6c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:788627d59ebeaa64b341f704f8f493a0420c0c681b15ffcd419adf993033dd6c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:70e7614d3325f6585924b90560f4683bbe35399269509e56aa4f3e9eedf14797_s390x as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:70e7614d3325f6585924b90560f4683bbe35399269509e56aa4f3e9eedf14797_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:70e7614d3325f6585924b90560f4683bbe35399269509e56aa4f3e9eedf14797_s390x",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:938280e962b71270c35ad82962ad0c6559c6f6a04b21b4374e193f48bf2ff021_ppc64le as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:938280e962b71270c35ad82962ad0c6559c6f6a04b21b4374e193f48bf2ff021_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:938280e962b71270c35ad82962ad0c6559c6f6a04b21b4374e193f48bf2ff021_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e8643e1dcf18e4ecda5cf917d5de840e466e19a300aa4c3a2d766d5252bb76b4_amd64 as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e8643e1dcf18e4ecda5cf917d5de840e466e19a300aa4c3a2d766d5252bb76b4_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e8643e1dcf18e4ecda5cf917d5de840e466e19a300aa4c3a2d766d5252bb76b4_amd64",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9048d490f3da588e6c674c5e4e3f164aaee6729ba6cd11ef9427719593bb0b93_s390x as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9048d490f3da588e6c674c5e4e3f164aaee6729ba6cd11ef9427719593bb0b93_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9048d490f3da588e6c674c5e4e3f164aaee6729ba6cd11ef9427719593bb0b93_s390x",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b2f0e4561b9f960675b812fd0721d890e8feb55dbbc9eff7a1fc8cd90c27fd03_amd64 as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b2f0e4561b9f960675b812fd0721d890e8feb55dbbc9eff7a1fc8cd90c27fd03_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b2f0e4561b9f960675b812fd0721d890e8feb55dbbc9eff7a1fc8cd90c27fd03_amd64",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e5b08b8d62f8912ca0d8650bf15cf0c4e9e648299d3d443d39c14c46bc1282a4_ppc64le as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e5b08b8d62f8912ca0d8650bf15cf0c4e9e648299d3d443d39c14c46bc1282a4_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e5b08b8d62f8912ca0d8650bf15cf0c4e9e648299d3d443d39c14c46bc1282a4_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d7f729111a93515a15ddad0f4bc69e857d25af89025847551436639e54c011f_amd64 as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d7f729111a93515a15ddad0f4bc69e857d25af89025847551436639e54c011f_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d7f729111a93515a15ddad0f4bc69e857d25af89025847551436639e54c011f_amd64",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:df6a5a8e9a7a0f412178ef9afd9d0788fde0023e21beb134dc2b5675a9b11a35_s390x as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-rhel8@sha256:df6a5a8e9a7a0f412178ef9afd9d0788fde0023e21beb134dc2b5675a9b11a35_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:df6a5a8e9a7a0f412178ef9afd9d0788fde0023e21beb134dc2b5675a9b11a35_s390x",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:f2e144a772bcf40fc2cc18615a618e534f37af5da46052a94b06ab247f4dc620_ppc64le as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-rhel8@sha256:f2e144a772bcf40fc2cc18615a618e534f37af5da46052a94b06ab247f4dc620_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:f2e144a772bcf40fc2cc18615a618e534f37af5da46052a94b06ab247f4dc620_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:34b1ddac79932bef05caafa82ff9862b2b9720b07a82e43ba115281e6e837a63_ppc64le as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:34b1ddac79932bef05caafa82ff9862b2b9720b07a82e43ba115281e6e837a63_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:34b1ddac79932bef05caafa82ff9862b2b9720b07a82e43ba115281e6e837a63_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:692b9eafa5bbcea2033197c0537dfbbf21bbcd2a75f3b311912193405ba4671d_s390x as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:692b9eafa5bbcea2033197c0537dfbbf21bbcd2a75f3b311912193405ba4671d_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:692b9eafa5bbcea2033197c0537dfbbf21bbcd2a75f3b311912193405ba4671d_s390x",
"relates_to_product_reference": "8Base-RHACS-4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c5335e389d459d6de8db7fb1fae9aff32ab1efe754751d6a1bd5d81589c146db_amd64 as a component of RHACS 4.3 for RHEL 8",
"product_id": "8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c5335e389d459d6de8db7fb1fae9aff32ab1efe754751d6a1bd5d81589c146db_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c5335e389d459d6de8db7fb1fae9aff32ab1efe754751d6a1bd5d81589c146db_amd64",
"relates_to_product_reference": "8Base-RHACS-4.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-39222",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"discovery_date": "2023-12-08T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-rhel8@sha256:60aaece3ac376416a47e01d834a769609891c8198a1b95bd0bf1a773b79a7cf0_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-rhel8@sha256:6402de73857f6c04a1fd5c770cd3957331b72f696a1945af880f004524b1452b_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-rhel8@sha256:de915faffadfd07bb41e612742380d86138049bd5cc5d51e8d2d81ec5751b29f_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:0f559bc90033644e7032cb0a929f55ad4f98177f34d2e1fed5e0d3f2988def4f_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:72a9645719f747b8d2e6b4632f0afa257d14ba1a582df1ccd989d52f98a1dcca_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e2d5f872de74369adde8211f2e002882c2a23e37e817b182fb0721a92a8b3d68_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-operator-bundle@sha256:3a37d9f7751f0ec55eed03df0acd851c0a0c83249aee98850293b94f8dd2eb04_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-operator-bundle@sha256:7e704564f53831e7e01c5c8298d42270a49c0dad6327b80832cf34419da00fca_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-operator-bundle@sha256:90bdfd8fba74a36a81c52c2fe7abbd79158d1482699bda52af7e2caf0803b3fc_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:70e7614d3325f6585924b90560f4683bbe35399269509e56aa4f3e9eedf14797_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:938280e962b71270c35ad82962ad0c6559c6f6a04b21b4374e193f48bf2ff021_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e8643e1dcf18e4ecda5cf917d5de840e466e19a300aa4c3a2d766d5252bb76b4_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9048d490f3da588e6c674c5e4e3f164aaee6729ba6cd11ef9427719593bb0b93_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b2f0e4561b9f960675b812fd0721d890e8feb55dbbc9eff7a1fc8cd90c27fd03_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e5b08b8d62f8912ca0d8650bf15cf0c4e9e648299d3d443d39c14c46bc1282a4_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d7f729111a93515a15ddad0f4bc69e857d25af89025847551436639e54c011f_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-rhel8@sha256:df6a5a8e9a7a0f412178ef9afd9d0788fde0023e21beb134dc2b5675a9b11a35_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-rhel8@sha256:f2e144a772bcf40fc2cc18615a618e534f37af5da46052a94b06ab247f4dc620_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:34b1ddac79932bef05caafa82ff9862b2b9720b07a82e43ba115281e6e837a63_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:692b9eafa5bbcea2033197c0537dfbbf21bbcd2a75f3b311912193405ba4671d_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c5335e389d459d6de8db7fb1fae9aff32ab1efe754751d6a1bd5d81589c146db_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2253625"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Dex, an identity service that uses OpenID Connect to drive authentication for other apps. This issue may allow an attacker to make a victim navigate to a malicious website and guide them through the OIDC flow, stealing the OAuth authorization code in the process. The authorization code then can be exchanged by the attacker for a token, gaining access to applications accepting that token. Version 2.35.0 has introduced a fix for this issue; Users are advised to upgrade.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dexidp: gaining access to applications accepting that token",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2e1f7f206a43b16b9eec84a9138d054a1f8c95c9b620d05160ac32bce119e78b_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a5dbf5803835c61387dac05a01a44486a2308a0e9f9f929e88b6a9b3769f8f60_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dfd07bd22ae9ff4a14b06009262650b4eedca84551aa02e0c4ae5e14460c2ed5_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-main-rhel8@sha256:5ecf3c2aca847d8df0830ab698fe0e4b1a0216f04495d7e3b6a03440c5359d5a_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-main-rhel8@sha256:93d6e895f55d2f60c8bf5b10031cc9c025e86f480a7b00cf00dbb54fe4080728_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-main-rhel8@sha256:d25ed99610b530ed8c0b6ba937a6c0822e72ae61022f57c26f0cc775fabf6a21_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-rhel8-operator@sha256:0c0638f9f612b93671e798881cdc1205741db4fa08086afa0e3cf57710975586_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-rhel8-operator@sha256:9869d3e2b2d08232aab2f3af99467758b4b95e7d4f72fed9ac6bdd29eb7da81d_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-rhel8-operator@sha256:acf7dabe654ffee7d6e944f810e6ab19d62ae21e5a96499d1b3898cc56d5da91_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:63817765b309bccdaf47a4ed3ee0cd3c00f831e11605616da0e177e4090b1604_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:7744d2530bc26d872030805b583141f2aae75d9b119efa344e025c78a4e8b3c1_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:788627d59ebeaa64b341f704f8f493a0420c0c681b15ffcd419adf993033dd6c_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-rhel8@sha256:60aaece3ac376416a47e01d834a769609891c8198a1b95bd0bf1a773b79a7cf0_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-rhel8@sha256:6402de73857f6c04a1fd5c770cd3957331b72f696a1945af880f004524b1452b_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-rhel8@sha256:de915faffadfd07bb41e612742380d86138049bd5cc5d51e8d2d81ec5751b29f_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:0f559bc90033644e7032cb0a929f55ad4f98177f34d2e1fed5e0d3f2988def4f_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:72a9645719f747b8d2e6b4632f0afa257d14ba1a582df1ccd989d52f98a1dcca_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e2d5f872de74369adde8211f2e002882c2a23e37e817b182fb0721a92a8b3d68_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-operator-bundle@sha256:3a37d9f7751f0ec55eed03df0acd851c0a0c83249aee98850293b94f8dd2eb04_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-operator-bundle@sha256:7e704564f53831e7e01c5c8298d42270a49c0dad6327b80832cf34419da00fca_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-operator-bundle@sha256:90bdfd8fba74a36a81c52c2fe7abbd79158d1482699bda52af7e2caf0803b3fc_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:70e7614d3325f6585924b90560f4683bbe35399269509e56aa4f3e9eedf14797_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:938280e962b71270c35ad82962ad0c6559c6f6a04b21b4374e193f48bf2ff021_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e8643e1dcf18e4ecda5cf917d5de840e466e19a300aa4c3a2d766d5252bb76b4_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9048d490f3da588e6c674c5e4e3f164aaee6729ba6cd11ef9427719593bb0b93_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b2f0e4561b9f960675b812fd0721d890e8feb55dbbc9eff7a1fc8cd90c27fd03_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e5b08b8d62f8912ca0d8650bf15cf0c4e9e648299d3d443d39c14c46bc1282a4_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d7f729111a93515a15ddad0f4bc69e857d25af89025847551436639e54c011f_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-rhel8@sha256:df6a5a8e9a7a0f412178ef9afd9d0788fde0023e21beb134dc2b5675a9b11a35_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-rhel8@sha256:f2e144a772bcf40fc2cc18615a618e534f37af5da46052a94b06ab247f4dc620_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:34b1ddac79932bef05caafa82ff9862b2b9720b07a82e43ba115281e6e837a63_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:692b9eafa5bbcea2033197c0537dfbbf21bbcd2a75f3b311912193405ba4671d_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c5335e389d459d6de8db7fb1fae9aff32ab1efe754751d6a1bd5d81589c146db_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-39222"
},
{
"category": "external",
"summary": "RHBZ#2253625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253625"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-39222",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39222"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-39222",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-39222"
},
{
"category": "external",
"summary": "https://github.com/dexidp/dex/security/advisories/GHSA-vh7g-p26c-j2cw",
"url": "https://github.com/dexidp/dex/security/advisories/GHSA-vh7g-p26c-j2cw"
}
],
"release_date": "2022-10-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-12-11T15:09:44+00:00",
"details": "If you are using an earlier version of RHACS 4.3, you are advised to upgrade to patch release 4.3.1.",
"product_ids": [
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2e1f7f206a43b16b9eec84a9138d054a1f8c95c9b620d05160ac32bce119e78b_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a5dbf5803835c61387dac05a01a44486a2308a0e9f9f929e88b6a9b3769f8f60_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dfd07bd22ae9ff4a14b06009262650b4eedca84551aa02e0c4ae5e14460c2ed5_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-main-rhel8@sha256:5ecf3c2aca847d8df0830ab698fe0e4b1a0216f04495d7e3b6a03440c5359d5a_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-main-rhel8@sha256:93d6e895f55d2f60c8bf5b10031cc9c025e86f480a7b00cf00dbb54fe4080728_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-main-rhel8@sha256:d25ed99610b530ed8c0b6ba937a6c0822e72ae61022f57c26f0cc775fabf6a21_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-rhel8-operator@sha256:0c0638f9f612b93671e798881cdc1205741db4fa08086afa0e3cf57710975586_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-rhel8-operator@sha256:9869d3e2b2d08232aab2f3af99467758b4b95e7d4f72fed9ac6bdd29eb7da81d_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-rhel8-operator@sha256:acf7dabe654ffee7d6e944f810e6ab19d62ae21e5a96499d1b3898cc56d5da91_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:63817765b309bccdaf47a4ed3ee0cd3c00f831e11605616da0e177e4090b1604_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:7744d2530bc26d872030805b583141f2aae75d9b119efa344e025c78a4e8b3c1_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:788627d59ebeaa64b341f704f8f493a0420c0c681b15ffcd419adf993033dd6c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:7725"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-central-db-rhel8@sha256:2e1f7f206a43b16b9eec84a9138d054a1f8c95c9b620d05160ac32bce119e78b_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a5dbf5803835c61387dac05a01a44486a2308a0e9f9f929e88b6a9b3769f8f60_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-central-db-rhel8@sha256:dfd07bd22ae9ff4a14b06009262650b4eedca84551aa02e0c4ae5e14460c2ed5_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-rhel8@sha256:60aaece3ac376416a47e01d834a769609891c8198a1b95bd0bf1a773b79a7cf0_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-rhel8@sha256:6402de73857f6c04a1fd5c770cd3957331b72f696a1945af880f004524b1452b_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-rhel8@sha256:de915faffadfd07bb41e612742380d86138049bd5cc5d51e8d2d81ec5751b29f_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:0f559bc90033644e7032cb0a929f55ad4f98177f34d2e1fed5e0d3f2988def4f_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:72a9645719f747b8d2e6b4632f0afa257d14ba1a582df1ccd989d52f98a1dcca_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e2d5f872de74369adde8211f2e002882c2a23e37e817b182fb0721a92a8b3d68_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-main-rhel8@sha256:5ecf3c2aca847d8df0830ab698fe0e4b1a0216f04495d7e3b6a03440c5359d5a_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-main-rhel8@sha256:93d6e895f55d2f60c8bf5b10031cc9c025e86f480a7b00cf00dbb54fe4080728_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-main-rhel8@sha256:d25ed99610b530ed8c0b6ba937a6c0822e72ae61022f57c26f0cc775fabf6a21_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-operator-bundle@sha256:3a37d9f7751f0ec55eed03df0acd851c0a0c83249aee98850293b94f8dd2eb04_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-operator-bundle@sha256:7e704564f53831e7e01c5c8298d42270a49c0dad6327b80832cf34419da00fca_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-operator-bundle@sha256:90bdfd8fba74a36a81c52c2fe7abbd79158d1482699bda52af7e2caf0803b3fc_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-rhel8-operator@sha256:0c0638f9f612b93671e798881cdc1205741db4fa08086afa0e3cf57710975586_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-rhel8-operator@sha256:9869d3e2b2d08232aab2f3af99467758b4b95e7d4f72fed9ac6bdd29eb7da81d_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-rhel8-operator@sha256:acf7dabe654ffee7d6e944f810e6ab19d62ae21e5a96499d1b3898cc56d5da91_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:63817765b309bccdaf47a4ed3ee0cd3c00f831e11605616da0e177e4090b1604_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:7744d2530bc26d872030805b583141f2aae75d9b119efa344e025c78a4e8b3c1_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:788627d59ebeaa64b341f704f8f493a0420c0c681b15ffcd419adf993033dd6c_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:70e7614d3325f6585924b90560f4683bbe35399269509e56aa4f3e9eedf14797_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:938280e962b71270c35ad82962ad0c6559c6f6a04b21b4374e193f48bf2ff021_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e8643e1dcf18e4ecda5cf917d5de840e466e19a300aa4c3a2d766d5252bb76b4_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9048d490f3da588e6c674c5e4e3f164aaee6729ba6cd11ef9427719593bb0b93_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b2f0e4561b9f960675b812fd0721d890e8feb55dbbc9eff7a1fc8cd90c27fd03_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:e5b08b8d62f8912ca0d8650bf15cf0c4e9e648299d3d443d39c14c46bc1282a4_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d7f729111a93515a15ddad0f4bc69e857d25af89025847551436639e54c011f_amd64",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-rhel8@sha256:df6a5a8e9a7a0f412178ef9afd9d0788fde0023e21beb134dc2b5675a9b11a35_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-rhel8@sha256:f2e144a772bcf40fc2cc18615a618e534f37af5da46052a94b06ab247f4dc620_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:34b1ddac79932bef05caafa82ff9862b2b9720b07a82e43ba115281e6e837a63_ppc64le",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:692b9eafa5bbcea2033197c0537dfbbf21bbcd2a75f3b311912193405ba4671d_s390x",
"8Base-RHACS-4.3:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c5335e389d459d6de8db7fb1fae9aff32ab1efe754751d6a1bd5d81589c146db_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dexidp: gaining access to applications accepting that token"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…