CVE-2023-45286 — Vulnetix

CVE-2023-45286 PUBLISHED CVSS 8.699999809265137 HIGH

Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.

EPSS 0.37% · 59.2th percentile

Risk Scores

CVSS 4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS Score

0.37%

59.2th percentile

Affected Products

Vendor	Product	Versions
Atlassian	Atlassian Bitbucket <9.4.13 (LTS)
Red Hat	Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat	Red Hat Enterprise Linux
Amazon	Amazon Linux 2
Red Hat	Red Hat OpenShift Serverless Logic <1.35.0
Red Hat	Red Hat OpenShift GitOps <1.15.2
Red Hat	Red Hat OpenShift Kube Descheduler Operator 5
RESF	RESF Rocky Linux
Red Hat	Red Hat Enterprise Linux 9
Red Hat	Red Hat OpenShift Network Observability 1.6
Red Hat	Red Hat OpenShift Container Platform <4.14.38
Red Hat	Red Hat OpenShift Container Platform <4.16.8
Red Hat	Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat	Red Hat OpenShift Secondary Scheduler Operator
Ubuntu	Ubuntu Linux
Red Hat	Red Hat OpenShift Container Platform <4.12.72
Red Hat	Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat	Red Hat OpenShift Data Foundation <4.14.13
Red Hat	Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat	Red Hat OpenShift for Windows Containers <10.15.3

…and 6 more

Exploit Intelligence

https://github.com/go-resty/resty/issues/739 (nist-nvd)
https://github.com/go-resty/resty/issues/743 (circl)
https://github.com/go-resty/resty/pull/745 (circl)
https://github.com/go-resty/resty/commit/577fed8730d79f583eb48dfc81674164e1fc471e (circl)
https://pkg.go.dev/vuln/GO-2023-2328 (circl)

Timeline

Nov 27, 2023 CVE Published
Nov 29, 2023 EPSS Score
Dec 27, 2023 Fix PR Merged
Dec 29, 2023 EPSS Score
Jan 28, 2024 EPSS Score
Feb 26, 2024 EPSS Score
Mar 27, 2024 EPSS Score
Apr 26, 2024 EPSS Score
May 26, 2024 EPSS Score
Jun 24, 2024 EPSS Score
Jul 24, 2024 EPSS Score
Aug 23, 2024 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1226.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1226 advisory
https://access.redhat.com/errata/RHSA-2024:2874 advisory
https://access.redhat.com/errata/RHSA-2024:2929 advisory
https://access.redhat.com/errata/RHSA-2024:2930 advisory
https://access.redhat.com/errata/RHSA-2024:2932 advisory
https://access.redhat.com/errata/RHSA-2024:2933 advisory
https://access.redhat.com/errata/RHSA-2024:3316 advisory
https://access.redhat.com/errata/RHSA-2024:2901 advisory
https://access.redhat.com/errata/RHSA-2024:3473 advisory
https://access.redhat.com/errata/RHSA-2024:3790 advisory
https://access.redhat.com/errata/RHSA-2024:3715 advisory
https://access.redhat.com/errata/RHSA-2024:3314 advisory
https://access.redhat.com/errata/RHSA-2024:3919 advisory
https://errata.build.resf.org/RLSA-2024:3830 advisory
https://errata.build.resf.org/RLSA-2024:3827 advisory
https://access.redhat.com/errata/RHSA-2024:3868 advisory
https://errata.build.resf.org/RLSA-2024:3826 advisory
https://access.redhat.com/errata/RHSA-2024:3889 advisory
https://access.redhat.com/errata/RHSA-2024:3989 advisory

…and 30 more

Open in Interactive Console →

$ Console Community · 100/wk Open console ›