Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-3089
HistoryJul 05, 2023 - 1:15 p.m.

CVE-2023-3089

2023-07-0513:15:09
CWE-693
CWE-521
[email protected]
web.nvd.nist.gov
5
compliance
red hat
openshift
fips
cryptographic modules
cve-2023-3089

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

8.3

Confidence

High

EPSS

0.001

Percentile

44.9%

JSON

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated.

Affected configurations

Nvd
Node
redhatopenshift_container_platformMatch4.10
AND
redhatenterprise_linuxMatch7.0
OR
redhatenterprise_linuxMatch8.0
Node
redhatopenshift_container_platform_for_linuxoneMatch4.10
OR
redhatopenshift_container_platform_for_linuxoneMatch4.11
OR
redhatopenshift_container_platform_for_powerMatch4.10
OR
redhatopenshift_container_platform_for_powerMatch4.11
OR
redhatopenshift_container_platform_ibm_z_systemsMatch4.10
OR
redhatopenshift_container_platform_ibm_z_systemsMatch4.11
AND
redhatenterprise_linuxMatch8.0
Node
redhatopenshift_container_platform_for_arm64Match4.10
OR
redhatopenshift_container_platform_for_arm64Match4.11
Node
redhatopenshift_container_platform_for_arm64Match4.12
OR
redhatopenshift_container_platform_for_linuxoneMatch4.12
OR
redhatopenshift_container_platform_for_powerMatch4.12
OR
redhatopenshift_container_platform_ibm_z_systemsMatch4.12
AND
redhatenterprise_linuxMatch8.0
OR
redhatenterprise_linuxMatch9.0
Node
redhatopenshift_container_platform_for_arm64Match4.12
AND
redhatenterprise_linuxMatch8.0
OR
redhatenterprise_linuxMatch9.0
VendorProductVersionCPE
redhatopenshift_container_platform4.10cpe:2.3:a:redhat:openshift_container_platform:4.10:*:*:*:*:*:*:*
redhatenterprise_linux7.0cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
redhatenterprise_linux8.0cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
redhatopenshift_container_platform_for_linuxone4.10cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.10:*:*:*:*:*:*:*
redhatopenshift_container_platform_for_linuxone4.11cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.11:*:*:*:*:*:*:*
redhatopenshift_container_platform_for_power4.10cpe:2.3:a:redhat:openshift_container_platform_for_power:4.10:*:*:*:*:*:*:*
redhatopenshift_container_platform_for_power4.11cpe:2.3:a:redhat:openshift_container_platform_for_power:4.11:*:*:*:*:*:*:*
redhatopenshift_container_platform_ibm_z_systems4.10cpe:2.3:a:redhat:openshift_container_platform_ibm_z_systems:4.10:*:*:*:*:*:*:*
redhatopenshift_container_platform_ibm_z_systems4.11cpe:2.3:a:redhat:openshift_container_platform_ibm_z_systems:4.11:*:*:*:*:*:*:*
redhatopenshift_container_platform_for_arm644.10cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.10:*:*:*:*:*:*:*
Rows per page:
1-10 of 161

Related

nessus 11
prion 1
redhatcve 1
redhat 40
cve 1
cvelist 1
nessus
nessus
RHEL 8 / 9 : OpenShift Container Platform 4.12.23 (RHSA-2023:3924)
2024-04-28 00:00:00
RHEL 8 : Release of OpenShift Serverless Client kn 1.29.1 (Moderate) (RHSA-2023:4471)
2024-04-28 00:00:00
RHCOS 4 : OpenShift Container Platform 4.12.23 (RHSA-2023:3924)
2024-01-24 00:00:00
prion
prion
Design/Logic Flaw
2023-07-05 13:15:00
redhatcve
redhatcve
CVE-2023-3089
2023-07-05 12:17:52
redhat
redhat
(RHSA-2023:4471) Moderate: Release of OpenShift Serverless Client kn 1.29.1
2023-08-03 14:52:16
(RHSA-2023:3924) Moderate: OpenShift Container Platform 4.12.23 security update
2023-07-06 14:04:22
(RHSA-2023:4862) Critical: Multicluster Engine for Kubernetes 2.3.1 security updates and bug fixes
2023-08-29 14:04:31
cve
cve
CVE-2023-3089
2023-07-05 13:15:09
cvelist
cvelist
CVE-2023-3089 Ocp & fips mode
2023-07-05 12:21:03

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

8.3

Confidence

High

EPSS

0.001

Percentile

44.9%

JSON
Related for NVD:CVE-2023-3089
nessus11prion1redhatcve1redhat40cve1cvelist1