VDB
WID-SEC-W-2026-1136
WID-SEC-W-2026-1136
PUBLISHED
Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat OpenShift Service Mesh 3.0 | ||
| Red Hat OpenShift Container Platform 4.21.10 | ||
| Red Hat OpenShift Service Mesh 3.2 | ||
| Red Hat Enterprise Linux | ||
| Red Hat OpenShift Container Platform <4.21.10 | ||
| Red Hat OpenShift Service Mesh 3.1.7 | ||
| SUSE Linux | ||
| Red Hat OpenShift Service Mesh 2.6 | ||
| SUSE openSUSE | ||
| Red Hat OpenShift Service Mesh 3.3 | ||
| Red Hat OpenShift Service Mesh <3.1.7 |
Exploit Intelligence
- gRPC-Go RBAC Authorization Policy Bypass via Missing `:path` Slash (Auth Bypass) (github-poc-repo)
- gRPC-Go RBAC Authorization Policy Bypass via Missing `:path` Slash (Auth Bypass) (github-poc)
- https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1136.json (circl)
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1136 (circl)
- https://access.redhat.com/errata/RHSA-2026:7245 (circl)
- https://access.redhat.com/errata/RHSA-2026:8493 (circl)
- https://access.redhat.com/errata/RHSA-2026:8483 (circl)
- https://access.redhat.com/errata/RHSA-2026:8484 (circl)
- https://access.redhat.com/errata/RHSA-2026:8490 (circl)
- https://access.redhat.com/errata/RHSA-2026:8491 (circl)
…and 42 more exploits
Timeline
- Apr 15, 2026 CVE Published
- Apr 26, 2026 CVE Updated
- May 8, 2026 Distribution Patch
- May 8, 2026 Distribution Patch
- May 8, 2026 Distribution Patch
- May 8, 2026 Distribution Patch
- May 8, 2026 Distribution Patch
- May 8, 2026 Distribution Patch
- May 8, 2026 Distribution Patch
- May 8, 2026 Distribution Patch
- May 8, 2026 Distribution Patch
- May 8, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1136.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1136 advisory
- https://access.redhat.com/errata/RHSA-2026:7245 url
- https://access.redhat.com/errata/RHSA-2026:8493 url
- https://access.redhat.com/errata/RHSA-2026:8483 url
- https://access.redhat.com/errata/RHSA-2026:8484 url
- https://access.redhat.com/errata/RHSA-2026:8490 url
- https://access.redhat.com/errata/RHSA-2026:8491 url
- https://access.redhat.com/errata/RHSA-2026:9448 url
- https://access.redhat.com/errata/RHSA-2026:9388 url
- https://access.redhat.com/errata/RHSA-2026:9453 url
- https://access.redhat.com/errata/RHSA-2026:8449 url
- https://access.redhat.com/errata/RHSA-2026:9872 url
- https://access.redhat.com/errata/RHSA-2026:10125 url
- https://access.redhat.com/errata/RHSA-2026:10131 url
- https://access.redhat.com/errata/RHSA-2026:10172 url
- https://access.redhat.com/errata/RHSA-2026:10158 url
- https://access.redhat.com/errata/RHSA-2026:10107 url
- https://access.redhat.com/errata/RHSA-2026:10175 url
- https://access.redhat.com/errata/RHSA-2026:10130 url
…and 8 more