VDB

RHSA-2022%3A1461

RHSA-2022%3A1461 PUBLISHED CVSS 8.300000190734863 HIGH

A flaw was found in kubeclient, the Ruby client for Kubernetes REST API, in the way it parsed kubeconfig files. When the kubeconfig file does not configure custom CA to verify certs, kubeclient ends up accepting any certificate (it wrongly returns VERIFY_NONE). Ruby applications that leverage kubeclient to parse kubeconfig files are susceptible to Man-in-the-middle attacks (MITM).

Risk Scores

CVSS 3.1
8.300000190734863
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

Affected Products

VendorProductVersions
Red Hatopenshift-logging/elasticsearch-rhel8-operator@sha256:adeed182d6023f4108ee86094c2153673d743ca958b7be78ee4919ae29f848f8_ppc64le as a component of RHOL 5.4 for RHEL 8openshift-logging/elasticsearch-rhel8-operator@sha256:adeed182d6023f4108ee86094c2153673d743ca958b7be78ee4919ae29f848f8_ppc64le, *
Red Hatopenshift-logging/elasticsearch-operator-bundle@sha256:1b54c744d8de4210758a5393eef78c742cb243fc6b6615efc0f9be577fd9554d_amd64 as a component of RHOL 5.4 for RHEL 8*, *
Red Hatopenshift-logging/logging-loki-rhel8@sha256:039fbd8e8712073d3eb863437a3b1615233d015d4cdc55c817c02bc48380695f_arm64 as a component of RHOL 5.4 for RHEL 8openshift-logging/logging-loki-rhel8@sha256:039fbd8e8712073d3eb863437a3b1615233d015d4cdc55c817c02bc48380695f_arm64, *
Red Hatopenshift-logging/elasticsearch-proxy-rhel8@sha256:d5c24afd8a962f0f061b784e936a7c9701b5ea8846b254466073673add0e96a2_s390x as a component of RHOL 5.4 for RHEL 8openshift-logging/elasticsearch-proxy-rhel8@sha256:d5c24afd8a962f0f061b784e936a7c9701b5ea8846b254466073673add0e96a2_s390x, *
Red Hatopenshift-logging/elasticsearch-rhel8-operator@sha256:1e4b9a092a9c165dbfb1f79a076db3889f6564579e99563f41d06ee2b415490b_amd64 as a component of RHOL 5.4 for RHEL 8*, openshift-logging/elasticsearch-rhel8-operator@sha256:1e4b9a092a9c165dbfb1f79a076db3889f6564579e99563f41d06ee2b415490b_amd64
Red Hatopenshift-logging/logging-loki-rhel8@sha256:eecfd30e378000adaa49f15d369b219b0d03e57b788d29196deaabd1d53147e5_amd64 as a component of RHOL 5.4 for RHEL 8*, openshift-logging/logging-loki-rhel8@sha256:eecfd30e378000adaa49f15d369b219b0d03e57b788d29196deaabd1d53147e5_amd64
Red Hatopenshift-logging/kibana6-rhel8@sha256:4fec46a8af0b9c8b8610353899b6f4f8c681ed3b5a87610fbc0b7b250456572f_s390x as a component of RHOL 5.4 for RHEL 8*, openshift-logging/kibana6-rhel8@sha256:4fec46a8af0b9c8b8610353899b6f4f8c681ed3b5a87610fbc0b7b250456572f_s390x
Red Hatopenshift-logging/log-file-metric-exporter-rhel8@sha256:59b59c7e08259d4f141cdf02906e5490f072b070c34d43bbf969bb52823510b7_s390x as a component of RHOL 5.4 for RHEL 8openshift-logging/log-file-metric-exporter-rhel8@sha256:59b59c7e08259d4f141cdf02906e5490f072b070c34d43bbf969bb52823510b7_s390x, openshift-logging/log-file-metric-exporter-rhel8@sha256:59b59c7e08259d4f141cdf02906e5490f072b070c34d43bbf969bb52823510b7_s390x
Red Hatopenshift-logging/elasticsearch6-rhel8@sha256:7983352391dd09c930c6a115992ad8b462bcdad4d160da1caadd2f0b356949f8_s390x as a component of RHOL 5.4 for RHEL 8openshift-logging/elasticsearch6-rhel8@sha256:7983352391dd09c930c6a115992ad8b462bcdad4d160da1caadd2f0b356949f8_s390x, openshift-logging/elasticsearch6-rhel8@sha256:7983352391dd09c930c6a115992ad8b462bcdad4d160da1caadd2f0b356949f8_s390x
Red Hatopenshift-logging/log-file-metric-exporter-rhel8@sha256:59b59c7e08259d4f141cdf02906e5490f072b070c34d43bbf969bb52823510b7_s390x as a component of RHOL 5.4 for RHEL 8*, *
Red Hatopenshift-logging/opa-openshift-rhel8@sha256:708cdd07d4c10ef9a8b705125610d5b8252126a0d107b7c92c4ec52e6599dff1_ppc64le as a component of RHOL 5.4 for RHEL 8*, *
Red Hatopenshift-logging/logging-loki-rhel8@sha256:a1f65f290ab20cbcd45cda3cd71065974e9b0fe2105e84a5cc13e6a7aa756169_s390x as a component of RHOL 5.4 for RHEL 8*, openshift-logging/logging-loki-rhel8@sha256:a1f65f290ab20cbcd45cda3cd71065974e9b0fe2105e84a5cc13e6a7aa756169_s390x
Red Hatopenshift-logging/cluster-logging-rhel8-operator@sha256:1d6dd1f6c65affa8060a1fab9366c5543b14826cc1a75550f666119f8034abe0_ppc64le as a component of RHOL 5.4 for RHEL 8*, openshift-logging/cluster-logging-rhel8-operator@sha256:1d6dd1f6c65affa8060a1fab9366c5543b14826cc1a75550f666119f8034abe0_ppc64le
Red Hatopenshift-logging/eventrouter-rhel8@sha256:0de6d8a34ec21eaadfdb942195c8f3993a3f78238a9b113bf814cbae4d17b58a_amd64 as a component of RHOL 5.4 for RHEL 8openshift-logging/eventrouter-rhel8@sha256:0de6d8a34ec21eaadfdb942195c8f3993a3f78238a9b113bf814cbae4d17b58a_amd64, *
Red Hatopenshift-logging/loki-rhel8-operator@sha256:9bd96b1d0ac0b9ffdc3f4998e6baad7d20a7d349873a6208a133409dee766074_arm64 as a component of RHOL 5.4 for RHEL 8openshift-logging/loki-rhel8-operator@sha256:9bd96b1d0ac0b9ffdc3f4998e6baad7d20a7d349873a6208a133409dee766074_arm64, openshift-logging/loki-rhel8-operator@sha256:9bd96b1d0ac0b9ffdc3f4998e6baad7d20a7d349873a6208a133409dee766074_arm64
Red Hatopenshift-logging/logging-loki-rhel8@sha256:a1f65f290ab20cbcd45cda3cd71065974e9b0fe2105e84a5cc13e6a7aa756169_s390x as a component of RHOL 5.4 for RHEL 8*, openshift-logging/logging-loki-rhel8@sha256:a1f65f290ab20cbcd45cda3cd71065974e9b0fe2105e84a5cc13e6a7aa756169_s390x
Red Hatopenshift-logging/vector-rhel8@sha256:17b56834649dcfce064581c94904d37e65afa46c50ed93864de5e7e87b3f7bce_amd64 as a component of RHOL 5.4 for RHEL 8*, openshift-logging/vector-rhel8@sha256:17b56834649dcfce064581c94904d37e65afa46c50ed93864de5e7e87b3f7bce_amd64
Red Hatopenshift-logging/kibana6-rhel8@sha256:84f140cb9dec75ee1f2c718f485356e132b2cc1411b192c108e70cc403173eb4_amd64 as a component of RHOL 5.4 for RHEL 8*, *
Red Hatopenshift-logging/opa-openshift-rhel8@sha256:b483eb202c7f82e48f3d717a87be02a5806edfa57ac075736a7f5088753ce652_s390x as a component of RHOL 5.4 for RHEL 8openshift-logging/opa-openshift-rhel8@sha256:b483eb202c7f82e48f3d717a87be02a5806edfa57ac075736a7f5088753ce652_s390x, openshift-logging/opa-openshift-rhel8@sha256:b483eb202c7f82e48f3d717a87be02a5806edfa57ac075736a7f5088753ce652_s390x
Red Hatopenshift-logging/elasticsearch6-rhel8@sha256:2973c57c1dada06cf686862d45caf9ff6668ce36d52a4278f9c57a8647164a71_ppc64le as a component of RHOL 5.4 for RHEL 8*, *

…and 106 more

Timeline

  • Apr 20, 2022 CVE Published
  • Apr 25, 2026 Distribution Patch
  • Apr 25, 2026 Distribution Patch
  • Apr 25, 2026 Security Advisory
  • Apr 25, 2026 Security Advisory
  • Apr 25, 2026 Security Advisory
  • May 14, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›