CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
98.4%
An incomplete fix was shipped for the Rapid Reset (CVE-2023-44487/CVE-2023-39325) vulnerability for an OpenShift Containers.
[
{
"vendor": "Red Hat",
"product": "Red Hat OpenShift Container Platform 4.11",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "openshift4/ose-operator-lifecycle-manager",
"defaultStatus": "affected",
"versions": [
{
"version": "v4.11.0-202401301508.p0.g5ea0428.assembly.stream",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:openshift:4.11::el8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat OpenShift Container Platform 4.12",
"collectionURL": "https://catalog.redhat.com/software/containers/",
"packageName": "openshift4/ose-operator-lifecycle-manager",
"defaultStatus": "affected",
"versions": [
{
"version": "v4.12.0-202401190520.p0.g4b287bd.assembly.stream",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:openshift:4.12::el8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat OpenShift Container Platform 4",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "openshift4/ose-olm-rukpak-rhel8",
"defaultStatus": "unaffected",
"cpes": [
"cpe:/a:redhat:openshift:4"
]
}
]