VDB
CVE-2024-29180
CVE-2024-29180
PUBLISHED
CVSS 8.699999809265137 HIGH
Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.
EPSS 3.39% · 87.6th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
3.39%
87.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | Red Hat OpenShift Serverless Logic <1.35.0 | |
| Red Hat | Red Hat OpenShift Migration Toolkit for Applications <7.0.3 | |
| Red Hat | Red Hat OpenShift API for Data Protection 1 | |
| Red Hat | Red Hat OpenShift GitOps 1.12 | |
| Red Hat | Red Hat Enterprise Linux | |
| Amazon | Amazon Linux 2 | |
| Red Hat | Red Hat OpenShift | |
| RESF | RESF Rocky Linux | |
| Red Hat | Red Hat OpenShift Container Platform <4.15.28 | |
| Red Hat | Red Hat OpenShift <v1.11.4 | |
| Red Hat | Red Hat OpenShift GitOps <1.15.2 | |
| Red Hat | Red Hat OpenShift <4.16.24 | |
| Red Hat | Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 | |
| Red Hat | Red Hat Ansible Automation Platform | |
| Red Hat | Red Hat OpenShift Container Platform <4.14.38 | |
| Red Hat | Red Hat OpenShift Kube Descheduler Operator 5 | |
| Oracle | Oracle Linux | |
| Ubuntu | Ubuntu Linux | |
| Red Hat | Red Hat OpenShift Container Platform <4.12.72 | |
| Atlassian | Atlassian Bitbucket <8.19.25 (LTS) |
…and 24 more
Exploit Intelligence
- https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6 (nist-nvd)
- path-traversal-in-webpack-dev-middleware.html (github-poc)
- path-traversal-in-webpack-dev-middleware.html (github-poc)
- path-traversal-in-webpack-dev-middleware.html (github-poc)
- path-traversal-in-webpack-dev-middleware.html (github-poc)
- path-traversal-in-webpack-dev-middleware.html (github-poc)
- path-traversal-in-webpack-dev-middleware.html (github-poc)
- path-traversal-in-webpack-dev-middleware.html (github-poc)
- path-traversal-in-webpack-dev-middleware.html (github-poc)
- path-traversal-in-webpack-dev-middleware.html (github-poc)
…and 3 more exploits
Timeline
- Jan 21, 1970 Security Advisory
- Mar 21, 2024 CVE Published
- Mar 22, 2024 EPSS Score
- Apr 17, 2024 EPSS Score
- May 13, 2024 EPSS Score
- Jun 7, 2024 EPSS Score
- Jul 3, 2024 EPSS Score
- Aug 24, 2024 EPSS Score
- Sep 19, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 14, 2024 EPSS Score
- Nov 9, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1091.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1091 advisory
- https://access.redhat.com/errata/RHSA-2024:2815 advisory
- https://access.redhat.com/errata/RHSA-2024:2816 advisory
- https://access.redhat.com/errata/RHSA-2024:2817 advisory
- https://access.redhat.com/errata/RHSA-2024:2941 advisory
- https://access.redhat.com/errata/RHSA-2024:3989 advisory
- https://access.redhat.com/errata/RHSA-2024:4460 advisory
- https://access.redhat.com/errata/RHSA-2024:4520 advisory
- https://access.redhat.com/errata/RHSA-2024:4873 advisory
- https://access.redhat.com/errata/RHSA-2024:7164 advisory
- https://access.redhat.com/errata/RHSA-2025:8551 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1226.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1226 advisory
- https://access.redhat.com/errata/RHSA-2024:2874 advisory
- https://access.redhat.com/errata/RHSA-2024:2929 advisory
- https://access.redhat.com/errata/RHSA-2024:2930 advisory
- https://access.redhat.com/errata/RHSA-2024:2932 advisory
- https://access.redhat.com/errata/RHSA-2024:2933 advisory
- https://access.redhat.com/errata/RHSA-2024:3316 advisory
…and 98 more