Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.2.4

🗓️ 21 Apr 2026 17:29:36Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 4 Views

Red Hat OpenShift Service Mesh 3.2.4 fixes IPv6 host parsing and multiple CVEs.

Reporter	Title	Published	Views	Family All 3347
FreeBSD	traefik -- Multiple vulnerabilities	26 Mar 202600:00	–	freebsd
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery Cartridge affected by vulnerability in google.golang.org/grpc-v1.62.0	28 Apr 202621:25	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security QRadar Log Management AQL Plugin is vulnerable to using components with known vulnerabilities	27 Apr 202613:06	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container backup and restore is vulnerable to authorization bypass (CVE-2026-33186)	7 May 202613:37	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container operator and operands are vulnerable to loss of confidentiality (CVE-2026-25679)	7 May 202609:43	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to a runtime panic condition in Go JOSE [CVE-2026-34986]	21 May 202615:49	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities addressed with IBM Business Automation Workflow cumulative fixes May 2026	29 May 202616:43	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Guardium Data Protection is affected by multiple vulnerabilities	20 May 202615:34	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to insufficient validation in url.Parse [CVE-2026-25679]	21 May 202615:32	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Financial Transaction Manager is impacted by multiple vulnerabilities in RedHat Proxy for Kubernetes RBAC authorization	14 May 202611:11	–	ibm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2026-25679
access	www.access.redhat.com/security/cve/CVE-2026-33186
access	www.access.redhat.com/security/cve/CVE-2026-33747
access	www.access.redhat.com/security/cve/CVE-2026-33748
access	www.access.redhat.com/security/cve/CVE-2026-34986
access	www.access.redhat.com/security/cve/cve-2026-25679
access	www.access.redhat.com/security/cve/cve-2026-33186
access	www.access.redhat.com/security/cve/cve-2026-33747
access	www.access.redhat.com/security/cve/cve-2026-33748
access	www.access.redhat.com/security/cve/cve-2026-34986

04 Jun 2026 10:33Current

7.5High risk

Vulners AI Score7.5

CVSS 3.19.1 - 9.8

CVSS 48.2

EPSS0.00063

SSVC

ipv6 host parsing authorization bypass build kit exploits json web encryption denial of service bug fixes security update