Main Vulnerability Database Vulnerabilities #VU63885

#VU63885 Man-in-the-Middle (MitM) attack in Red Hat OpenShift Container Platform - CVE-2022-1677

Published: May 31, 2022

Vulnerability identifier: #VU63885

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2022-1677

CWE-ID: CWE-300

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Red Hat OpenShift Container Platform

Software vendor:
Red Hat Inc.

Description

The vulnerability allows a remote user to perform MitM attack.

The vulnerability exists due to an error when handling entries in cluster router's HAProxy configuration files. A remote user with permissions to create or modify Routes can insert a malformed entry into configuration files that match any arbitrary hostname or all hostnames in the cluster, and direct traffic to an arbitrary application within the cluster, including the application under attacker's control.

Remediation

Install updates from vendor's website.

External links

https://bugzilla.redhat.com/show_bug.cgi?id=2076211

#VU63885 Man-in-the-Middle (MitM) attack in Red Hat OpenShift Container Platform - CVE-2022-1677

Description

Remediation

External links

Please verify you're human