Openshift Serverless@- Security Vulnerabilities and Issues — Openshift Serverless@- CVE List

Lucene search

RedhatOpenshift Serverless-

3 matches found

CVE•added 2023/10/10 2:15 p.m.•4454 views

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

7.5CVSS8AI score0.94375EPSS

CVE•added 2023/12/18 4:15 p.m.•3838 views

CVE-2023-48795

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connecti...

5.9CVSS6.7AI score0.62834EPSS

CVE•added 2023/09/20 10:15 a.m.•177 views

CVE-2023-4853

A flaw was found in Quarkus where HTTP security policies are not sanitizing certain character permutations correctly when accepting requests, resulting in incorrect evaluation of permissions. This issue could allow an attacker to bypass the security policy altogether, resulting in unauthorized endp...

8.1CVSS7.6AI score0.00577EPSS