2 matches found
CVE-2022-1632
An Improper Certificate Validation attack was found in Openshift. A re-encrypt Route with destinationCACertificate explicitly set to the default serviceCA skips internal Service TLS certificate validation. This flaw allows an attacker to exploit an invalid certificate, resulting in a loss of...
CVE-2022-1632
CVE-2022-1632 concerns OpenShift: an Improper Certificate Validation flaw where a re-encrypt Route whose destinationCACertificate is set to the default serviceCA bypasses internal TLS certificate validation, enabling potential confidentiality leakage. Affected component is the OpenShift TLS route...