VDB
CVE-2023-3153
CVE-2023-3153
PUBLISHED
Es besteht eine Schwachstelle in Red Hat OpenShift. Dieser Fehler besteht im Open Virtual Network, da der Service Monitor MAC die Rate nicht richtig begrenzt. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen.
EPSS 0.07% · 21.4th percentile
Risk Scores
EPSS Score
0.07%
21.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | Red Hat OpenShift Container Platform < 4.14.0 |
Exploit Intelligence
- CIRCL seen: CVE-2023-3153 (circl-sighting)
- https://access.redhat.com/security/cve/CVE-2023-3153 (circl)
- RHBZ#2213279 (circl)
- https://github.com/ovn-org/ovn/commit/9a3f7ed905e525ebdcb14541e775211cbb0203bd (circl)
- https://github.com/ovn-org/ovn/issues/198 (circl)
- https://mail.openvswitch.org/pipermail/ovs-announce/2023-August/000327.html (circl)
- https://mail.openvswitch.org/pipermail/ovs-dev/2023-August/407553.html (circl)
Timeline
- Oct 4, 2023 CVE Published
- Oct 4, 2023 PoC Published
- Oct 5, 2023 EPSS Score
- Nov 6, 2023 EPSS Score
- Dec 7, 2023 EPSS Score
- Feb 9, 2024 EPSS Score
- Mar 11, 2024 EPSS Score
- Apr 12, 2024 EPSS Score
- May 14, 2024 EPSS Score
- Jun 14, 2024 EPSS Score
- Aug 17, 2024 EPSS Score
- Sep 17, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2860.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2860 advisory
- https://access.redhat.com/errata/RHSA-2023:6274 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2213279 advisory
- https://access.redhat.com/security/cve/CVE-2023-3153 advisory
- https://access.redhat.com/errata/RHSA-2023:5006 advisory