CVE-2022-23635 — Vulnetix

Try Vulnetix Request Demo

CVE-2022-23635 PUBLISHED

In Red Hat OpenShift existieren mehrere Schwachstellen. Die Fehler bestehen in den Komponenten envoy, golang, github.com/gogo/protobuf, Node.js Axios und github.com/ulikunitz/xz. Ein entfernter, anonymer oder authentisierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu verursachen und Sicherheitsmaßnahmen zu umgehen.

EPSS 0.68% · 71.4th percentile

Risk Scores

EPSS Score

0.68%

71.4th percentile

Affected Products

Vendor	Product	Versions
Amazon	Amazon Linux 2
Gentoo	Gentoo Linux
Red Hat	Red Hat Enterprise Linux
Red Hat	Red Hat OpenShift Container Platform 4
Oracle	Oracle Linux

Timeline

Feb 22, 2022 CVE Published
Feb 23, 2022 EPSS Score
Apr 15, 2022 EPSS Score
Jun 6, 2022 EPSS Score
Jul 28, 2022 EPSS Score
Sep 17, 2022 EPSS Score
Nov 8, 2022 EPSS Score
Dec 29, 2022 EPSS Score
Feb 18, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 11, 2023 EPSS Score
Jun 1, 2023 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0970.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0970 advisory
https://access.redhat.com/errata/RHSA-2022:4668 advisory
https://access.redhat.com/errata/RHSA-2022:1275 advisory
https://access.redhat.com/errata/RHSA-2022:1276 advisory
https://access.redhat.com/errata/RHSA-2022:1679 advisory
https://linux.oracle.com/errata/ELSA-2022-9362.html advisory
https://security.gentoo.org/glsa/202208-02 advisory
https://linux.oracle.com/errata/ELSA-2022-7129.html advisory
https://access.redhat.com/errata/RHSA-2022:7129 advisory
https://access.redhat.com/errata/RHSA-2022:7457 advisory
https://access.redhat.com/errata/RHSA-2022:7954 advisory
https://alas.aws.amazon.com/AL2/ALAS-2023-2303.html advisory
https://access.redhat.com/errata/RHSA-2024:2944 advisory

Open in Interactive Console →