Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

Red Hat Openshift Data Foundation 4.22

Source -

ADPCNA

CNA CVEs -

1

ADP CVEs -

15

CISA CVEs -

0

NVD CVEs -

0
Related CVEsRelated VendorsRelated AssignersReports
15Vulnerabilities found

CVE-2026-41567
Assigner-GitHub, Inc.
ShareView Details
Assigner-GitHub, Inc.
CVSS Score-7.2||HIGH
EPSS-0.15% / 4.99%
||
7 Day CHG~0.00%
Published-05 Jun, 2026 | 00:35
Updated-17 Jul, 2026 | 13:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Docker: `PUT /containers/{id}/archive` executes container binary on the host

Moby is an open source container framework. In versions prior to 29.5.1 and in moby/moby v2 prior to v2.0.0-beta.14, when a compressed archive is uploaded to a container via `PUT /containers/{id}/archive` or piped through `docker cp -`, the daemon resolves decompression binaries (such as `xz` or `unpigz`) from the container's filesystem rather than the host's due to incorrect ordering of operations. A malicious container image containing a trojanized decompression binary can achieve arbitrary code execution with full daemon privileges, including host root UID and unrestricted capabilities, when a user uploads a compressed (xz or gzip) archive into that container. This issue is fixed in Docker Engine 29.5.1 and moby/moby v2.0.0-beta.14. Workarounds include only running containers from trusted images, using authorization plugins to restrict access to the `PUT /containers/{id}/archive` endpoint, and avoiding piping compressed archives into containers created from untrusted images

Action-Not Available
Vendor-mobyRed Hat, Inc.Docker, Inc.
Product-docker/daemonDocker Enginemoby/v2/daemonRed Hat Ceph Storage 5Red Hat Enterprise Linux 10Multicluster Engine for KubernetesRed Hat Ceph Storage 7Red Hat Advanced Cluster Management for Kubernetes 2Multicluster Global Hub 1.4.5Red Hat Enterprise Linux 9Red Hat Openshift Data Foundation 4.22Red Hat OpenShift distributed tracing 3OpenShift Source-to-Image (S2I)Red Hat Ceph Storage 9Exploit IntelligenceOpenShift LightspeedRed Hat Ceph Storage 8Red Hat Hardened ImagesRed Hat OpenShift AI (RHOAI)Red Hat OpenShift Container Platform 4
CWE ID-CWE-427
Uncontrolled Search Path Element
CVE-2026-39821
Assigner-Go Project
ShareView Details
Assigner-Go Project
CVSS Score-9.6||CRITICAL
EPSS-0.48% / 38.18%
||
7 Day CHG~0.00%
Published-22 May, 2026 | 15:01
Updated-17 Jul, 2026 | 13:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Invoking failure to reject ASCII-only Punycode-encoded labels in golang.org/x/net/idna

The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode("xn--example-.com") incorrectly returns the name "example.com" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject "example.com" but permit "xn--example-.com". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name "example.com".

Action-Not Available
Vendor-golang.org/x/netRed Hat, Inc.Go
Product-netgolang.org/x/net/idnaZero Trust Workload Identity Manager - Tech PreviewMachine Deletion Remediation OperatorRed Hat Connectivity Link 1Multiarch Tuning OperatorRed Hat Developer HubRed Hat Enterprise Linux AI 3.4Red Hat Quay 3.16Multicluster Engine for KubernetesRed Hat OpenShift Service Mesh 3.3Deployment Validation OperatorZero Trust Workload Identity ManagerRed Hat OpenShift Service Mesh 3.2Logging Subsystem for Red Hat OpenShift 6.4Red Hat Openshift Data Foundation 4.22Red Hat Web TerminalRed Hat OpenShift Service Mesh 2.6Red Hat OpenShift Container Platform 4.22streams for Apache Kafka 3Red Hat OpenShift Builds 1.8.1Red Hat 3scale API Management Platform 2DevWorkspace Operator 0.42Red Hat Quay 3.10External Secrets Operator for Red Hat OpenShiftRed Hat OpenShift on AWScert-manager Operator for Red Hat OpenShiftNetwork Observability Operatormulticluster engine for Kubernetes 2.9Red Hat OpenShift Cluster Manager CLIRHEM 1.1 for RHEL 9Red Hat Enterprise Linux 7Red Hat OpenStack Platform 18.0Red Hat OpenShift Service Mesh 3.1Red Hat Advanced Cluster Security for Kubernetes 4.10Gatekeeper 3Red Hat Advanced Cluster Management for Kubernetes 2.13Migration Toolkit for ContainersRed Hat Advanced Cluster Security for Kubernetes 4.11Red Hat Enterprise Linux 10Red Hat Advanced Cluster Management for Kubernetes 2Node HealthCheck OperatorRed Hat Enterprise Linux 9Red Hat Enterprise Linux 8Red Hat Ansible Automation Platform 2Red Hat OpenShift GitOps 1.20OpenShift ServerlessCompliance OperatorRed Hat Ceph Storage 9Migration Toolkit for Applications 8OpenShift LightspeedRHEM 1.0 for RHEL 9Power monitoring for Red Hat OpenShiftRed Hat OpenShift Dev Spaces 3.29Red Hat Service Interconnect 2OpenShift Developer Tools and ServicesRed Hat OpenStack Platform 16.2Red Hat Advanced Cluster Security for Kubernetes 4.9Red Hat OpenShift Builds 1.7.4Red Hat Ceph Storage 5OpenShift API for Data ProtectionOpenShift PipelinesFile Integrity OperatorSecurity Profiles OperatorRed Hat Certification Program for Red Hat Enterprise Linux 9RHEM 1.1 for RHEL 10Red Hat Satellite 6Red Hat Ceph Storage 8Cluster Observability Operator 1.5.0Red Hat Edge Manager 1.1multicluster engine for Kubernetes 2.6Red Hat OpenShift AI (RHOAI)Confidential Compute Attestationmulticluster engine for Kubernetes 2.8Logical Volume Manager StorageFence Agents Remediation OperatorMulticluster Global Hub 1.4.5Red Hat Quay 3.9Red Hat Lightspeed for Runtimes OperatorRed Hat Trusted Artifact Signer 1.4Red Hat Enterprise Linux AI (RHEL AI) 3Red Hat Service Interconnect 1Red Hat OpenShift Service Mesh 3Cryostat 4Red Hat OpenShift Virtualization 4Red Hat OpenShift GitOps 1.19Red Hat OpenShift for Windows ContainersRed Hat OpenStack Platform 17.1Assisted Installer for Red Hat OpenShift Container Platform 2Red Hat Ceph Storage 6Red Hat Edge Manager 1.0Red Hat Hardened ImagesRed Hat OpenShift Container Platform 4
CWE ID-CWE-1289
Improper Validation of Unsafe Equivalence in Input
CVE-2026-46595
Assigner-Go Project
ShareView Details
Assigner-Go Project
CVSS Score-10||CRITICAL
EPSS-0.44% / 35.68%
||
7 Day CHG~0.00%
Published-22 May, 2026 | 02:31
Updated-17 Jul, 2026 | 13:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh

Previously, CVE-2024-45337 fixed an authorization bypass for misused ssh server configurations; if any other type of callback is passed other than public key, then the source-address validation would be skipped.

Action-Not Available
Vendor-golang.org/x/cryptoRed Hat, Inc.Go
Product-cryptogolang.org/x/crypto/sshRed Hat OpenStack Platform 16.2Red Hat Advanced Cluster Security for Kubernetes 4.9Red Hat OpenShift Builds 1.7.4Zero Trust Workload Identity Manager - Tech PreviewRed Hat Quay 3OpenShift API for Data ProtectionRed Hat Enterprise Linux AI 3.4Multicluster Engine for KubernetesOpenShift PipelinesSecurity Profiles OperatorZero Trust Workload Identity ManagerRed Hat Openshift Data Foundation 4.22Red Hat OpenShift Builds 1.8.1RHEM 1.1 for RHEL 10Red Hat OpenShift GitOpsDevWorkspace Operator 0.42Red Hat Edge Manager 1.1External Secrets Operator for Red Hat OpenShiftRed Hat OpenShift on AWScert-manager Operator for Red Hat OpenShiftRed Hat OpenShift AI (RHOAI)Confidential Compute Attestationmulticluster engine for Kubernetes 2.8RHEM 1.1 for RHEL 9Red Hat OpenStack Platform 18.0Red Hat Advanced Cluster Security for Kubernetes 4.10Red Hat Advanced Cluster Management for Kubernetes 2.13Red Hat Advanced Cluster Security for Kubernetes 4.11Red Hat Enterprise Linux 10Red Hat OpenShift AI 3.3Red Hat Advanced Cluster Management for Kubernetes 2Red Hat Trusted Artifact Signer 1.4Red Hat Enterprise Linux AI (RHEL AI) 3Red Hat Enterprise Linux 9Red Hat Enterprise Linux 8Cryostat 4OpenShift ServerlessRed Hat Ceph Storage 9Red Hat OpenShift for Windows ContainersRed Hat OpenShift Virtualization 4RHEM 1.0 for RHEL 9Red Hat OpenStack Platform 17.1Assisted Installer for Red Hat OpenShift Container Platform 2Red Hat OpenShift Dev Spaces 3.29Red Hat Edge Manager 1.0Red Hat Hardened ImagesRed Hat OpenShift Container Platform 4
CWE ID-CWE-303
Incorrect Implementation of Authentication Algorithm
CWE ID-CWE-863
Incorrect Authorization
CVE-2026-42508
Assigner-Go Project
ShareView Details
Assigner-Go Project
CVSS Score-9.1||CRITICAL
EPSS-0.49% / 38.78%
||
7 Day CHG~0.00%
Published-22 May, 2026 | 02:31
Updated-17 Jul, 2026 | 13:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts

Previously, a revoked 'SignatureKey' belonging to a CA was not correctly checked for revocation. Now, both the 'key' and 'key.SignatureKey' are checked for @revoked.

Action-Not Available
Vendor-golang.org/x/cryptoRed Hat, Inc.Go
Product-cryptogolang.org/x/crypto/ssh/knownhostsRed Hat OpenStack Platform 16.2Red Hat Advanced Cluster Security for Kubernetes 4.9Red Hat OpenShift Builds 1.7.4Red Hat Quay 3OpenShift API for Data ProtectionRed Hat Quay 3.16Multicluster Engine for KubernetesRed Hat Openshift Data Foundation 4.22Red Hat Advanced Cluster Management for Kubernetes 2.11Red Hat OpenShift Builds 1.8.1RHEM 1.1 for RHEL 10Red Hat OpenShift GitOpsDevWorkspace Operator 0.42Red Hat Edge Manager 1.1Red Hat Quay 3.10External Secrets Operator for Red Hat OpenShiftRed Hat OpenShift AI (RHOAI)RHEM 1.1 for RHEL 9Red Hat OpenStack Platform 18.0Red Hat Advanced Cluster Security for Kubernetes 4.10Red Hat Enterprise Linux 10Red Hat Advanced Cluster Management for Kubernetes 2Red Hat Quay 3.9Red Hat Trusted Artifact Signer 1.4Red Hat Enterprise Linux AI (RHEL AI) 3Red Hat Enterprise Linux 9Red Hat Enterprise Linux 8OpenShift ServerlessRed Hat Ceph Storage 9Red Hat OpenShift Virtualization 4RHEM 1.0 for RHEL 9Red Hat OpenStack Platform 17.1Assisted Installer for Red Hat OpenShift Container Platform 2Red Hat Edge Manager 1.0Red Hat Hardened ImagesRed Hat OpenShift Container Platform 4
CWE ID-CWE-295
Improper Certificate Validation
CVE-2026-39829
Assigner-Go Project
ShareView Details
Assigner-Go Project
CVSS Score-7.5||HIGH
EPSS-0.41% / 33.71%
||
7 Day CHG~0.00%
Published-22 May, 2026 | 02:31
Updated-17 Jul, 2026 | 13:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh

The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated clients during public key authentication. RSA moduli are now limited to 8192 bits, and DSA parameters are validated per FIPS 186-2.

Action-Not Available
Vendor-golang.org/x/cryptoRed Hat, Inc.Go
Product-cryptogolang.org/x/crypto/sshRed Hat OpenStack Platform 16.2Red Hat Advanced Cluster Security for Kubernetes 4.9Red Hat OpenShift Builds 1.7.4Red Hat Openshift Data Foundation 4Zero Trust Workload Identity Manager - Tech PreviewRed Hat Quay 3OpenShift API for Data ProtectionRed Hat Quay 3.16Multicluster Engine for KubernetesOpenShift PipelinesSecurity Profiles OperatorZero Trust Workload Identity ManagerRed Hat Trusted Artifact Signer 1.3Red Hat Openshift Data Foundation 4.22Red Hat OpenShift Builds 1.8.1RHEM 1.1 for RHEL 10Red Hat OpenShift GitOpsDevWorkspace Operator 0.42Red Hat Edge Manager 1.1Red Hat Quay 3.10External Secrets Operator for Red Hat OpenShiftmulticluster engine for Kubernetes 2.6cert-manager Operator for Red Hat OpenShiftRed Hat OpenShift AI (RHOAI)Red Hat OpenShift on AWSmulticluster engine for Kubernetes 2.9Confidential Compute AttestationRHEM 1.1 for RHEL 9Red Hat OpenStack Platform 18.0Red Hat Advanced Cluster Security for Kubernetes 4.10Red Hat Enterprise Linux 10Red Hat Advanced Cluster Security for Kubernetes 4.11Red Hat Advanced Cluster Management for Kubernetes 2Red Hat Quay 3.9Red Hat Trusted Artifact Signer 1.4Red Hat Enterprise Linux 9Red Hat Trusted Artifact SignerRed Hat Enterprise Linux 8Cryostat 4OpenShift ServerlessRed Hat Advanced Cluster Security 4Red Hat Ceph Storage 9Red Hat OpenShift for Windows ContainersRed Hat OpenShift Virtualization 4RHEM 1.0 for RHEL 9Red Hat OpenStack Platform 17.1Assisted Installer for Red Hat OpenShift Container Platform 2Red Hat OpenShift Dev Spaces 3.29Red Hat Edge Manager 1.0Red Hat OpenShift Container Platform 4
CWE ID-CWE-1284
Improper Validation of Specified Quantity in Input
CWE ID-CWE-347
Improper Verification of Cryptographic Signature
CVE-2026-39830
Assigner-Go Project
ShareView Details
Assigner-Go Project
CVSS Score-9.1||CRITICAL
EPSS-0.53% / 41.42%
||
7 Day CHG~0.00%
Published-22 May, 2026 | 02:31
Updated-17 Jul, 2026 | 13:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh

A malicious SSH peer could send unsolicited global request responses to fill an internal buffer, blocking the connection's read loop. The blocked goroutine could not be released by calling Close(), resulting in a resource leak per connection. Unsolicited global responses are now discarded.

Action-Not Available
Vendor-golang.org/x/cryptoRed Hat, Inc.Go
Product-cryptogolang.org/x/crypto/sshRed Hat OpenStack Platform 16.2Red Hat Advanced Cluster Security for Kubernetes 4.9Red Hat OpenShift Builds 1.7.4Red Hat Openshift Data Foundation 4Zero Trust Workload Identity Manager - Tech PreviewRed Hat Quay 3OpenShift API for Data ProtectionRed Hat Quay 3.16Multicluster Engine for KubernetesOpenShift PipelinesSecurity Profiles OperatorZero Trust Workload Identity ManagerRed Hat Trusted Artifact Signer 1.3Red Hat Openshift Data Foundation 4.22Red Hat OpenShift Builds 1.8.1RHEM 1.1 for RHEL 10Red Hat OpenShift GitOpsDevWorkspace Operator 0.42Red Hat Edge Manager 1.1Red Hat Quay 3.10External Secrets Operator for Red Hat OpenShiftRed Hat OpenShift on AWScert-manager Operator for Red Hat OpenShiftRed Hat OpenShift AI (RHOAI)Confidential Compute AttestationRHEM 1.1 for RHEL 9Red Hat OpenShift Dev SpacesRed Hat OpenStack Platform 18.0Red Hat Advanced Cluster Security for Kubernetes 4.10Red Hat Enterprise Linux 10Red Hat Advanced Cluster Security for Kubernetes 4.11Red Hat OpenShift AI 3.3Red Hat Advanced Cluster Management for Kubernetes 2Red Hat Quay 3.9Red Hat Trusted Artifact Signer 1.4Red Hat Enterprise Linux 9Red Hat Trusted Artifact SignerRed Hat Enterprise Linux 8Cryostat 4OpenShift ServerlessRed Hat Advanced Cluster Security 4Red Hat Ceph Storage 9Red Hat OpenShift for Windows ContainersRed Hat OpenShift Virtualization 4RHEM 1.0 for RHEL 9Red Hat OpenStack Platform 17.1Assisted Installer for Red Hat OpenShift Container Platform 2Red Hat Edge Manager 1.0Red Hat OpenShift Container Platform 4
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE ID-CWE-772
Missing Release of Resource after Effective Lifetime
CVE-2026-39835
Assigner-Go Project
ShareView Details
Assigner-Go Project
CVSS Score-5.3||MEDIUM
EPSS-0.39% / 31.68%
||
7 Day CHG~0.00%
Published-22 May, 2026 | 02:31
Updated-17 Jul, 2026 | 13:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh

SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.

Action-Not Available
Vendor-golang.org/x/cryptoRed Hat, Inc.Go
Product-cryptogolang.org/x/crypto/sshRed Hat OpenStack Platform 16.2Red Hat Advanced Cluster Security for Kubernetes 4.9Red Hat OpenShift Builds 1.7.4Zero Trust Workload Identity Manager - Tech PreviewRed Hat Quay 3OpenShift API for Data ProtectionRed Hat Quay 3.16Multicluster Engine for KubernetesOpenShift PipelinesSecurity Profiles OperatorZero Trust Workload Identity ManagerRed Hat Trusted Artifact Signer 1.3Red Hat Openshift Data Foundation 4.22Red Hat OpenShift Builds 1.8.1RHEM 1.1 for RHEL 10Red Hat OpenShift GitOpsRed Hat Edge Manager 1.1Red Hat Quay 3.10External Secrets Operator for Red Hat OpenShiftRed Hat OpenShift on AWScert-manager Operator for Red Hat OpenShiftRed Hat OpenShift AI (RHOAI)Confidential Compute AttestationRHEM 1.1 for RHEL 9Red Hat OpenShift Dev SpacesRed Hat OpenStack Platform 18.0Red Hat Advanced Cluster Security for Kubernetes 4.10Red Hat Enterprise Linux 10Red Hat Advanced Cluster Security for Kubernetes 4.11Red Hat OpenShift Dev Workspaces OperatorRed Hat Advanced Cluster Management for Kubernetes 2Red Hat Quay 3.9Red Hat Trusted Artifact Signer 1.4Red Hat Enterprise Linux 9Red Hat Trusted Artifact SignerRed Hat Enterprise Linux 8Cryostat 4OpenShift ServerlessRed Hat Ceph Storage 9Red Hat OpenShift for Windows ContainersRed Hat OpenShift Virtualization 4RHEM 1.0 for RHEL 9Red Hat OpenStack Platform 17.1Assisted Installer for Red Hat OpenShift Container Platform 2Red Hat Edge Manager 1.0Red Hat OpenShift Container Platform 4
CWE ID-CWE-295
Improper Certificate Validation
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2026-39828
Assigner-Go Project
ShareView Details
Assigner-Go Project
CVSS Score-6.3||MEDIUM
EPSS-0.31% / 23.47%
||
7 Day CHG~0.00%
Published-22 May, 2026 | 02:31
Updated-17 Jul, 2026 | 13:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh

When an SSH server authentication callback returned PartialSuccessError with non-nil Permissions, those permissions were silently discarded, potentially dropping certificate restrictions such as force-command after a second factor succeeded. Returning non-nil Permissions with PartialSuccessError now results in a connection error.

Action-Not Available
Vendor-golang.org/x/cryptoRed Hat, Inc.Go
Product-cryptogolang.org/x/crypto/sshRed Hat OpenStack Platform 16.2Red Hat Advanced Cluster Security for Kubernetes 4.9Red Hat OpenShift Builds 1.7.4Red Hat Openshift Data Foundation 4Zero Trust Workload Identity Manager - Tech PreviewRed Hat Quay 3OpenShift API for Data ProtectionRed Hat Quay 3.16Multicluster Engine for KubernetesOpenShift PipelinesSecurity Profiles OperatorZero Trust Workload Identity ManagerRed Hat Trusted Artifact Signer 1.3Red Hat Openshift Data Foundation 4.22Red Hat OpenShift Builds 1.8.1RHEM 1.1 for RHEL 10Red Hat OpenShift GitOpsDevWorkspace Operator 0.42Red Hat Edge Manager 1.1Red Hat Quay 3.10External Secrets Operator for Red Hat OpenShiftmulticluster engine for Kubernetes 2.6cert-manager Operator for Red Hat OpenShiftRed Hat OpenShift AI (RHOAI)Red Hat OpenShift on AWSConfidential Compute AttestationRHEM 1.1 for RHEL 9Red Hat OpenShift Dev SpacesRed Hat OpenStack Platform 18.0Red Hat Advanced Cluster Security for Kubernetes 4.10Red Hat Advanced Cluster Security for Kubernetes 4.11Red Hat Enterprise Linux 10Red Hat Advanced Cluster Management for Kubernetes 2Red Hat Quay 3.9Red Hat Trusted Artifact Signer 1.4Red Hat Enterprise Linux 9Red Hat Trusted Artifact SignerRed Hat Enterprise Linux 8Cryostat 4OpenShift ServerlessRed Hat Advanced Cluster Security 4Red Hat Ceph Storage 9Red Hat OpenShift for Windows ContainersRed Hat OpenShift Virtualization 4RHEM 1.0 for RHEL 9Red Hat OpenStack Platform 17.1Assisted Installer for Red Hat OpenShift Container Platform 2Red Hat Edge Manager 1.0Red Hat OpenShift Container Platform 4
CWE ID-CWE-281
Improper Preservation of Permissions
CWE ID-CWE-295
Improper Certificate Validation
CVE-2026-39832
Assigner-Go Project
ShareView Details
Assigner-Go Project
CVSS Score-9.1||CRITICAL
EPSS-0.53% / 40.99%
||
7 Day CHG~0.00%
Published-22 May, 2026 | 02:31
Updated-17 Jul, 2026 | 13:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent

When adding a key to a remote agent constraint extensions such as restrict-destination-v00@openssh.com were not serialized in the request. Destination restrictions were silently stripped when forwarding keys, allowing unrestricted use of the key on the remote host. The client now serializes all constraint extensions. Additionally, the in-memory keyring returned by NewKeyring() now rejects keys with unsupported constraint extensions instead of silently ignoring them.

Action-Not Available
Vendor-golang.org/x/cryptoRed Hat, Inc.Go
Product-cryptogolang.org/x/crypto/ssh/agentRed Hat OpenStack Platform 16.2Red Hat Advanced Cluster Security for Kubernetes 4.9Red Hat OpenShift Builds 1.7.4Red Hat Quay 3OpenShift API for Data ProtectionRed Hat Quay 3.16Multicluster Engine for KubernetesOpenShift PipelinesRed Hat Trusted Artifact Signer 1.3Red Hat Openshift Data Foundation 4.22Red Hat OpenShift Builds 1.8.1RHEM 1.1 for RHEL 10Red Hat OpenShift GitOpsRed Hat Edge Manager 1.1Red Hat Quay 3.10External Secrets Operator for Red Hat OpenShiftRed Hat OpenShift AI (RHOAI)RHEM 1.1 for RHEL 9Red Hat OpenStack Platform 18.0Red Hat Advanced Cluster Security for Kubernetes 4.10Red Hat Enterprise Linux 10Red Hat OpenShift Dev Workspaces OperatorRed Hat Advanced Cluster Management for Kubernetes 2Red Hat Quay 3.9Red Hat Trusted Artifact Signer 1.4Red Hat Enterprise Linux 9Red Hat Enterprise Linux 8OpenShift ServerlessRed Hat Advanced Cluster Security 4Red Hat Ceph Storage 9Red Hat OpenShift Virtualization 4RHEM 1.0 for RHEL 9Red Hat OpenStack Platform 17.1Assisted Installer for Red Hat OpenShift Container Platform 2Red Hat Edge Manager 1.0Red Hat OpenShift Container Platform 4
CWE ID-CWE-281
Improper Preservation of Permissions
CWE ID-CWE-502
Deserialization of Untrusted Data
CVE-2026-33814
Assigner-Go Project
ShareView Details
Assigner-Go Project
CVSS Score-7.5||HIGH
EPSS-0.78% / 51.87%
||
7 Day CHG~0.00%
Published-07 May, 2026 | 19:41
Updated-15 Jul, 2026 | 02:45
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE in net/http/internal/http2 in golang.org/x/net

When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.

Action-Not Available
Vendor-Go standard librarygolang.org/x/netRed Hat, Inc.Go
Product-http2gonet/httpgolang.org/x/net/http2OpenShift Service Mesh 2Red Hat OpenShift Service Mesh 3.1Red Hat Enterprise Linux 10OpenShift API for Data ProtectionMulticluster Engine for KubernetesRed Hat Advanced Cluster Management for Kubernetes 2Red Hat OpenShift Service Mesh 3.3Red Hat Enterprise Linux AI (RHEL AI) 3Red Hat Enterprise Linux 9Red Hat Openshift Data Foundation 4.22Red Hat OpenShift Service Mesh 3.2Red Hat Enterprise Linux 8Red Hat OpenShift Service Mesh 3Red Hat OpenShift Virtualization 4Cluster Observability Operator 1.5.0Red Hat Hardened ImagesRed Hat OpenShift AI (RHOAI)Red Hat OpenShift Container Platform 4
CWE ID-CWE-606
Unchecked Input for Loop Condition
CWE ID-CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
CVE-2026-35469
Assigner-GitHub, Inc.
ShareView Details
Assigner-GitHub, Inc.
CVSS Score-8.7||HIGH
EPSS-0.66% / 47.31%
||
7 Day CHG~0.00%
Published-16 Apr, 2026 | 21:19
Updated-17 Jul, 2026 | 13:18
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
SpdyStream: DOS on CRI

spdystream is a Go library for multiplexing streams over SPDY connections. In versions 0.5.0 and below, the SPDY/3 frame parser does not validate attacker-controlled counts and lengths before allocating memory. Three allocation paths are affected: the SETTINGS frame entry count, the header count in parseHeaderValueBlock, and individual header field sizes — all read as 32-bit integers and used directly as allocation sizes with no bounds checking. Because SPDY header blocks are zlib-compressed, a small on-the-wire payload can decompress into large attacker-controlled values. A remote peer that can send SPDY frames to a service using spdystream can exhaust process memory and cause an out-of-memory crash with a single crafted control frame. This issue has been fixed in version 0.5.1.

Action-Not Available
Vendor-mobyRed Hat, Inc.
Product-spdystreamRed Hat Advanced Cluster Security for Kubernetes 4.9Red Hat OpenShift Container Platform 4.21multicluster engine for Kubernetes 2.11Red Hat Container Native Virtualization 4.15Red Hat Container Native Virtualization 4.17Red Hat Container Native Virtualization 4.20Red Hat Container Native Virtualization 4.16Multicluster Engine for KubernetesRed Hat OpenShift Container Platform 4.15Zero Trust Workload Identity ManagerRed Hat Openshift Data Foundation 4.22Red Hat OpenShift Container Platform 4.22RHEM 1.1 for RHEL 10Red Hat OpenShift GitOpsRed Hat OpenShift Container Platform 4.12Red Hat OpenShift Container Platform 4.13External Secrets Operator for Red Hat OpenShiftcert-manager Operator for Red Hat OpenShiftDynamic Accelerator Slicer Operator for Red Hat OpenShiftmulticluster engine for Kubernetes 2.10multicluster engine for Kubernetes 2.8RHEM 1.1 for RHEL 9Red Hat OpenShift Container Platform 4.17Red Hat Container Native Virtualization 4.21Red Hat Advanced Cluster Security for Kubernetes 4.10Logical Volume Manager StorageRed Hat Advanced Cluster Management for Kubernetes 2.13Red Hat Container Native Virtualization 4.19Red Hat OpenShift Container Platform 4.18Red Hat Advanced Cluster Management for Kubernetes 2Red Hat Container Native Virtualization 4.22Red Hat OpenShift Container Platform 4.19Red Hat OpenShift Container Platform 4.14Red Hat OpenShift Container Platform 4.16Red Hat OpenShift distributed tracing 3Red Hat Advanced Cluster Security 4Red Hat OpenShift Virtualization 4Red Hat OpenShift for Windows ContainersRed Hat OpenShift Container Platform 4.20RHEM 1.0 for RHEL 9Red Hat Advanced Cluster Security for Kubernetes 4.8Red Hat OpenShift Container Platform 4
CWE ID-CWE-770
Allocation of Resources Without Limits or Throttling
CVE-2026-39883
Assigner-GitHub, Inc.
ShareView Details
Assigner-GitHub, Inc.
CVSS Score-7.3||HIGH
EPSS-0.22% / 12.44%
||
7 Day CHG~0.00%
Published-08 Apr, 2026 | 20:26
Updated-15 Jul, 2026 | 02:20
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
OpenTelemetry-Go has an incomplete fix for CVE-2026-24051: BSD kenv command not using absolute path enables PATH hijacking

OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2026-24051 changed the Darwin ioreg command to use an absolute path but left the BSD kenv command using a bare name, allowing the same PATH hijacking attack on BSD and Solaris platforms. This vulnerability is fixed in 1.43.0.

Action-Not Available
Vendor-opentelemetryopen-telemetryRed Hat, Inc.
Product-opentelemetryopentelemetry-gomulticluster engine for Kubernetes 2.8Red Hat Openshift Data Foundation 4.22
CWE ID-CWE-426
Untrusted Search Path
CVE-2026-35172
Assigner-GitHub, Inc.
ShareView Details
Assigner-GitHub, Inc.
CVSS Score-7.5||HIGH
EPSS-0.46% / 36.73%
||
7 Day CHG~0.00%
Published-06 Apr, 2026 | 19:08
Updated-15 Jul, 2026 | 02:46
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Distribution has stale blob access resurrection via repo-scoped redis descriptor cache invalidation

Distribution is a toolkit to pack, ship, store, and deliver container content. Prior to 3.1.0, distribution can restore read access in repo a after an explicit delete when storage.cache.blobdescriptor: redis and storage.delete.enabled: true are both enabled. The delete path clears the shared digest descriptor but leaves stale repo-scoped membership behind, so a later Stat or Get from repo b repopulates the shared descriptor and makes the deleted blob readable from repo a again. This vulnerability is fixed in 3.1.0.

Action-Not Available
Vendor-distributiondistributionRed Hat, Inc.
Product-distributiondistributionRed Hat Openshift Data Foundation 4.22Red Hat OpenShift Container Platform 4Red Hat OpenShift Container Platform 4.13Red Hat OpenShift Container Platform 4.12Red Hat OpenShift Container Platform 4.16Multicluster Engine for KubernetesRed Hat OpenShift Container Platform 4.15Red Hat OpenShift Container Platform 4.14
CWE ID-CWE-284
Improper Access Control
CWE ID-CWE-524
Use of Cache Containing Sensitive Information
CVE-2026-34986
Assigner-GitHub, Inc.
ShareView Details
Assigner-GitHub, Inc.
CVSS Score-7.5||HIGH
EPSS-0.65% / 47.10%
||
7 Day CHG~0.00%
Published-06 Apr, 2026 | 16:22
Updated-17 Jul, 2026 | 12:04
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Go JOSE affect by a panic in JWE decryption

Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.

Action-Not Available
Vendor-go-jose_projectgo-joseRed Hat, Inc.
Product-go-josego-joseCryostat 4 on RHEL 9Red Hat Openshift Data Foundation 4Zero Trust Workload Identity Manager - Tech PreviewRed Hat Quay 3Red Hat OpenShift distributed tracing 3.9.3Red Hat OpenShift GitOps 1.18Red Hat Quay 3.16Multicluster Engine for KubernetesRed Hat OpenShift Service Mesh 3.3Zero Trust Workload Identity ManagerRed Hat OpenShift Service Mesh 3.2Logging Subsystem for Red Hat OpenShift 6.4Red Hat Openshift Data Foundation 4.22Red Hat Enterprise Linux 9.2 Update Services for SAP SolutionsRed Hat OpenShift Container Platform 4.22Red Hat OpenShift Service Mesh 2.6Logging Subsystem for Red Hat OpenShift 6.0Red Hat Build of Podman DesktopMulticluster Global Hub 1.5.4Red Hat Build of Podman Desktop - Tech PreviewRed Hat OpenShift GitOpsRed Hat Quay 3.10External Secrets Operator for Red Hat OpenShiftRed Hat OpenShift on AWScert-manager Operator for Red Hat OpenShiftNetwork Observability OperatorKernel Module Management Operator for Red Hat Openshiftmulticluster engine for Kubernetes 2.10Migration Toolkit for Virtualizationmulticluster engine for Kubernetes 2.9Red Hat OpenShift Cluster Manager CLICustom Metric Autoscaler 2.19Red Hat OpenStack Platform 18.0Red Hat OpenShift Container Platform 4.17Red Hat OpenShift Service Mesh 3.1Red Hat Advanced Cluster Security for Kubernetes 4.10Migration Toolkit for ContainersRed Hat Enterprise Linux 10Red Hat OpenShift AI 3.3Red Hat Advanced Cluster Management for Kubernetes 2Node HealthCheck OperatorRed Hat Enterprise Linux 9Red Hat Quay 3.17OpenShift Service Mesh 3Red Hat Trusted Artifact SignerRed Hat Enterprise Linux 8Red Hat Ansible Automation Platform 2OpenShift ServerlessRed Hat Advanced Cluster Security 4Red Hat Quay 3.14Red Hat Quay 3.12OpenShift LightspeedPower monitoring for Red Hat OpenShiftRed Hat OpenShift Dev Spaces 3.29Red Hat OpenShift AI 2.25OpenShift Developer Tools and ServicesRed Hat Advanced Cluster Security for Kubernetes 4.9Red Hat OpenShift Container Platform 4.21multicluster engine for Kubernetes 2.11Red Hat Build of KueueOpenShift PipelinesSecurity Profiles OperatorRed Hat Openshift Data Foundation 4.19Red Hat Advanced Cluster Management for Kubernetes 2.14Red Hat Trusted Artifact Signer 1.3Red Hat Openshift Data Foundation 4.18Red Hat Enterprise Linux 10.0 Extended Update Supportmulticluster engine for Kubernetes 2.6Red Hat OpenShift AI (RHOAI)Red Hat Quay 3.15Red Hat OpenShift Pipelines 1.21Confidential Compute Attestationmulticluster engine for Kubernetes 2.8Red Hat Openshift Data Foundation 4.20OpenShift Service Mesh 2Red Hat OpenShift Pipelines 1.2Red Hat OpenShift Dev SpacesRed Hat Enterprise Linux 9.4 Extended Update SupportMulticluster Global Hub 1.3.4Multicluster Global Hub 1.6.2Logical Volume Manager StorageRed Hat OpenShift Container Platform 4.18Multicluster Global Hub 1.4.5Red Hat Quay 3.9Red Hat OpenShift Container Platform 4.19Logging Subsystem for Red Hat OpenShiftMulticluster Global HubRed Hat Enterprise Linux 9.4 Update Services for SAP SolutionsRed Hat Enterprise Linux 9.6 Extended Update SupportRed Hat Openshift Data Foundation 4.17OpenShift API for Data Protection 1.4multicluster engine for Kubernetes 2.7Red Hat OpenShift Dev Spaces 3.27OpenShift API for Data Protection 1.5Red Hat OpenShift Virtualization 4Red Hat OpenShift for Windows ContainersRed Hat OpenShift Container Platform 4.20Assisted Installer for Red Hat OpenShift Container Platform 2Red Hat Advanced Cluster Security for Kubernetes 4.8Red Hat Connectivity Link 1Red Hat OpenShift Container Platform 4
CWE ID-CWE-131
Incorrect Calculation of Buffer Size
CWE ID-CWE-248
Uncaught Exception
CVE-2025-8766
Assigner-Red Hat, Inc.
ShareView Details
Assigner-Red Hat, Inc.
CVSS Score-6.4||MEDIUM
EPSS-0.17% / 6.08%
||
7 Day CHG~0.00%
Published-13 Mar, 2026 | 02:48
Updated-15 Jul, 2026 | 02:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Noobaa-core: excessive permissions of /etc could lead to escalation of privilege in the noobaa-core container

A container privilege escalation flaw was found in certain Multi-Cloud Object Gateway Core images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root user, can leverage their membership in the root group to modify the /etc/passwd file. This could allow the attacker to add a new user with any arbitrary UID, including UID 0, leading to full root privileges within the container

Action-Not Available
Vendor-Red Hat, Inc.
Product-openshift_data_foundationRed Hat Openshift Data Foundation 4.22Red Hat Openshift Data Foundation 4.22
CWE ID-CWE-276
Incorrect Default Permissions