VDB
RHSA-2022%3A6427
RHSA-2022%3A6427
PUBLISHED
CVSS 10 CRITICAL
A flaw was found in the vm2 sandbox when running untrusted code, as the sandbox setup does not manage proper exception handling. This flaw allows an attacker to bypass the sandbox protections and gain remote code execution on the hypervisor host or the host which is running the sandbox.
Risk Scores
CVSS 3.1
10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | rhacm2/observatorium-rhel8@sha256:a9e1369d4c4f91a3180401a62125edf4cdb1ad640f62f17617546106564e329b_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/observatorium-rhel8@sha256:a9e1369d4c4f91a3180401a62125edf4cdb1ad640f62f17617546106564e329b_amd64 |
| Red Hat | rhacm2/multiclusterhub-rhel8@sha256:373aed071e2ce262a93f343b0ed7d275fb8d915472c12ab300e84e807ec741c8_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/multiclusterhub-rhel8@sha256:373aed071e2ce262a93f343b0ed7d275fb8d915472c12ab300e84e807ec741c8_arm64 |
| Red Hat | rhacm2/kube-state-metrics-rhel8@sha256:766c980fee3ee6f7dbb6435dc682ba262ba6060cfeeff193b179e14d0ef05b4c_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/kube-state-metrics-rhel8@sha256:766c980fee3ee6f7dbb6435dc682ba262ba6060cfeeff193b179e14d0ef05b4c_arm64 |
| Red Hat | rhacm2/acm-operator-bundle@sha256:ae0425fa31a4b327fed8b4297a88d4e22a3e88cbcd4832bb2dc08621bfac0488_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/acm-operator-bundle@sha256:ae0425fa31a4b327fed8b4297a88d4e22a3e88cbcd4832bb2dc08621bfac0488_arm64 |
| Red Hat | rhacm2/governance-policy-spec-sync-rhel8@sha256:6ce0edb1bd766783c7b9dd6e98657d40f8a2960321c6ecf637c4c698051b4137_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | * |
| Red Hat | rhacm2/acm-grafana-rhel8@sha256:a337b759535733d1f797a32111652cf2fc0ed8fec62f8e2a9185554f72509a40_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/acm-grafana-rhel8@sha256:a337b759535733d1f797a32111652cf2fc0ed8fec62f8e2a9185554f72509a40_s390x |
| Red Hat | rhacm2/memcached-exporter-rhel8@sha256:feaef8d7773f612276839db0172092bb5676863f6a96bf135a6c614c5da49d9d_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/memcached-exporter-rhel8@sha256:feaef8d7773f612276839db0172092bb5676863f6a96bf135a6c614c5da49d9d_ppc64le |
| Red Hat | rhacm2/search-collector-rhel8@sha256:e6b8cb8009fa80f3e96fede80e0b5377cf983812e6babe4a6241f95a5c45465c_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/search-collector-rhel8@sha256:e6b8cb8009fa80f3e96fede80e0b5377cf983812e6babe4a6241f95a5c45465c_amd64 |
| Red Hat | rhacm2/thanos-receive-controller-rhel8@sha256:a91c32073aa0841fd1da9dcad6132f022e942c7546f91915157d6e7207759e9a_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/thanos-receive-controller-rhel8@sha256:a91c32073aa0841fd1da9dcad6132f022e942c7546f91915157d6e7207759e9a_s390x |
| Red Hat | rhacm2/multicluster-operators-channel-rhel8@sha256:c64ba0f6f63e38146560b7d1fbbb15c06c38f37e943b0fe8a633c23724c39ea1_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/multicluster-operators-channel-rhel8@sha256:c64ba0f6f63e38146560b7d1fbbb15c06c38f37e943b0fe8a633c23724c39ea1_arm64 |
| Red Hat | rhacm2/observatorium-rhel8-operator@sha256:9cf829734b74ca0e47e8fd36c52930f9565aa379c15a36def38336999d0bce29_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/observatorium-rhel8-operator@sha256:9cf829734b74ca0e47e8fd36c52930f9565aa379c15a36def38336999d0bce29_amd64 |
| Red Hat | rhacm2/node-exporter-rhel8@sha256:2971f3756af79a820001ddb319355a602b1376ad8ff78c617d6e150954918e3d_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/node-exporter-rhel8@sha256:2971f3756af79a820001ddb319355a602b1376ad8ff78c617d6e150954918e3d_arm64 |
| Red Hat | rhacm2/cluster-backup-rhel8-operator@sha256:25f2b39429ce2f9666dcd7a0b71963d9204c9f26447d8d19f8580c4620fd2cc0_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | * |
| Red Hat | rhacm2/iam-policy-controller-rhel8@sha256:27a29c31bdd8f1d50a039980f938494941c3fa26cc6ac796fc0affdb6c76c9fb_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | * |
| Red Hat | rhacm2/prometheus-rhel8@sha256:4563c038e6a60157b143cc553c5007bb792f0fe38b7875190aa258ae41358ac9_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/prometheus-rhel8@sha256:4563c038e6a60157b143cc553c5007bb792f0fe38b7875190aa258ae41358ac9_s390x |
| Red Hat | rhacm2/multicluster-operators-application-rhel8@sha256:8b4e09040f27a51e2eb10ad10ceaebfe8eb2375a033a529205f2527bd9805c08_arm64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/multicluster-operators-application-rhel8@sha256:8b4e09040f27a51e2eb10ad10ceaebfe8eb2375a033a529205f2527bd9805c08_arm64 |
| Red Hat | rhacm2/governance-policy-propagator-rhel8@sha256:90a53241a344a9c4def1a94cab881ad7b05662fdccabd8275960bd872cc347af_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/governance-policy-propagator-rhel8@sha256:90a53241a344a9c4def1a94cab881ad7b05662fdccabd8275960bd872cc347af_amd64 |
| Red Hat | rhacm2/management-ingress-rhel8@sha256:3805a2dc1d100686767132952e26d32bff48790f41082c70bf664901020791bd_amd64 as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/management-ingress-rhel8@sha256:3805a2dc1d100686767132952e26d32bff48790f41082c70bf664901020791bd_amd64 |
| Red Hat | rhacm2/prometheus-alertmanager-rhel8@sha256:0e8c60b8883607db9b802d439e1f7ac6f76df7f9d5930c6101dc4aedbfa0bf53_s390x as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | * |
| Red Hat | rhacm2/multiclusterhub-rhel8@sha256:0357fc24c56e4d3c62acf8b6ee1331d61d7aa15f13b2ed1f59659f63f7049d8f_ppc64le as a component of Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8 | rhacm2/multiclusterhub-rhel8@sha256:0357fc24c56e4d3c62acf8b6ee1331d61d7aa15f13b2ed1f59659f63f7049d8f_ppc64le |
…and 172 more
Timeline
- Sep 12, 2022 CVE Published
- Jan 13, 2026 CVE Updated
- May 1, 2026 Distribution Patch
- May 1, 2026 Distribution Patch
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2022:6427 advisory
- https://access.redhat.com/security/updates/classification/#critical advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2124794 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2125064 issue
- https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_6427.json advisory
- https://access.redhat.com/security/cve/CVE-2022-36067 advisory
- https://www.cve.org/CVERecord?id=CVE-2022-36067 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2022-36067 advisory
- https://github.com/patriksimek/vm2/security/advisories/GHSA-mrgp-mrhc-5jrq advisory