CVE-2024-12698

🗓️ 18 Dec 2024 05:07:21Reported by redhatType

Incomplete fix for Rapid Reset Vulnerability; only unauthenticated streams are protected.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2024-12698	18 Dec 202405:09	–	circl
CNNVD	Red Hat OpenShift 资源管理错误漏洞	16 Dec 202400:00	–	cnnvd
Cvelist	CVE-2024-12698 Ose-olm-catalogd-container: incomplete fix for rapid reset (cve-2023-39325/cve-2023-44487)	18 Dec 202405:07	–	cvelist
EUVD	EUVD-2024-51057	3 Oct 202520:07	–	euvd
NVD	CVE-2024-12698	18 Dec 202405:15	–	nvd
RedhatCVE	CVE-2024-12698	16 Dec 202422:50	–	redhatcve
RedHat Linux	Important: Red Hat Security Advisory: OpenShift Container Platform 4.18.1 bug fix and security update	25 Feb 202504:38	–	redhat
Vulnrichment	CVE-2024-12698 Ose-olm-catalogd-container: incomplete fix for rapid reset (cve-2023-39325/cve-2023-44487)	18 Dec 202405:07	–	vulnrichment

[
  {
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "1.1.0",
        "versionType": "semver"
      }
    ],
    "packageName": "catalogd",
    "collectionURL": "https://github.com/operator-framework/catalogd",
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Container Platform 4.18",
    "collectionURL": "https://catalog.redhat.com/software/containers/",
    "packageName": "openshift4/ose-olm-catalogd-rhel9",
    "defaultStatus": "affected",
    "versions": [
      {
        "version": "v4.18.0-202502052031.p0.gf95a88f.assembly.stream.el9",
        "lessThan": "*",
        "versionType": "rpm",
        "status": "unaffected"
      }
    ],
    "cpes": [
      "cpe:/a:redhat:openshift:4.18::el9"
    ]
  }
]

Source	Link
access	www.access.redhat.com/errata/RHSA-2024:6122
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
access	www.access.redhat.com/security/cve/CVE-2024-12698

15 Apr 2026 00:35Current

7.7High risk

Vulners AI Score7.7

CVSS 3.16.5

EPSS0.00291

SSVC

CWE-400