CVE-2022-4039

CWE-276 — Incorrect Default Permissions5 documents5 sources

Severity

9.8CRITICAL

EPSS

0.1%

top 68.80%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Openshift Container Platform Redhat Openshift Container Platform FOR IBM Z Redhat Openshift Container Platform FOR Linuxone +2 more

Timeline

PublishedSep 22

Description

A flaw was found in Red Hat Single Sign-On for OpenShift container images, which are configured with an unsecured management interface enabled. This flaw allows an attacker to use this interface to deploy malicious code and access and modify potentially sensitive information in the app server configuration.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.1 | Impact: 5.9

Affected Packages1 packages

▶NVDredhat/single_sign-on7.0

Also affects: Openshift Container Platform 4.10, 4.9

🔴Vulnerability Details

GHSA

GHSA-7g6j-5xq2-wgqv: A flaw was found in Red Hat Single Sign-On for OpenShift container images, which are configured with an unsecured management interface enabled↗2023-09-22

▶

CVEList

Rhsso-container-image: unsecured management interface exposed to adjecent network↗2023-09-22

▶

💥Exploits & PoCs

Exploit-DB

Zyxel NWA-1100-NH - Command Injection↗2022-04-19

▶

📋Vendor Advisories

Red Hat

rhsso-container-image: unsecured management interface exposed to adjecent network↗2023-02-28

▶