Multiple vulnerabilities in OpenShift Container Platform 4.13
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 3 |
| CVE-ID | CVE-2022-41723 CVE-2022-27664 CVE-2023-3899 |
| CWE-ID | CWE-400 CWE-20 CWE-863 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Red Hat OpenShift Container Platform Client/Desktop applications / Software for system administration |
| Vendor | Red Hat Inc. |
Security Bulletin
This security bulletin contains information about 3 vulnerabilities.
1) Resource exhaustion
EUVDB-ID: #VU72686
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-41723
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to application does not properly control consumption of internal resources in the HPACK decoder. A remote attacker can send a specially crafted HTTP/2 stream to the application, cause resource exhaustion and perform a denial of service (DoS) attack.
MitigationInstall updates from vendor's website.
Red Hat OpenShift Container Platform: 4.13.0 - 4.13.9
CPE2.3- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.0:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.1:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.2:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.3:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.4:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.5:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.6:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.7:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.8:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.9:*:*:*:*:*:*:*
https://access.redhat.com/errata/RHSA-2023:4731
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Input validation error
EUVDB-ID: #VU67396
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-27664
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error. A remote attacker can pass specially crafted input to the application and perform a denial of service (DoS) attack.
MitigationInstall updates from vendor's website.
Red Hat OpenShift Container Platform: 4.13.0 - 4.13.9
CPE2.3- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.0:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.1:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.2:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.3:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.4:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.5:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.6:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.7:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.8:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.9:*:*:*:*:*:*:*
https://access.redhat.com/errata/RHSA-2023:4731
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Incorrect authorization
EUVDB-ID: #VU79878
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-3899
CWE-ID:
CWE-863 - Incorrect Authorization
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to incorrect authorization caused by D-Bus interface com.redhat.RHSM1 that exposes a significant number of methods to all users. A local user can abuse the com.redhat.RHSM1.Config.SetAll() method to change the state of the registration and escalate privileges on the system.
Install updates from vendor's website.
Red Hat OpenShift Container Platform: 4.13.0 - 4.13.9
CPE2.3- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.0:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.1:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.2:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.3:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.4:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.5:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.6:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.7:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.8:*:*:*:*:*:*:*
- cpe:2.3:a:red_hat:red_hat_openshift_container_platform:4.13.9:*:*:*:*:*:*:*
https://access.redhat.com/errata/RHSA-2023:4731
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
