Vulnerability-Lookup

CVE-2023-6237 (GCVE-0-2023-6237)

Vulnerability from cvelistv5 – Published: 2024-04-25 06:27 – Updated: 2026-05-12 10:41

Title

Excessive time spent checking invalid RSA public keys

Summary

Issue summary: Checking excessively long invalid RSA public keys may take a long time. Impact summary: Applications that use the function EVP_PKEY_public_check() to check RSA public keys may experience long delays. Where the key that is being checked has been obtained from an untrusted source this may lead to a Denial of Service. When function EVP_PKEY_public_check() is called on RSA public keys, a computation is done to confirm that the RSA modulus, n, is composite. For valid RSA keys, n is a product of two or more large primes and this computation completes quickly. However, if n is an overly large prime, then this computation would take a long time. An application that calls EVP_PKEY_public_check() and supplies an RSA key obtained from an untrusted source could be vulnerable to a Denial of Service attack. The function EVP_PKEY_public_check() is not called from other OpenSSL functions however it is called from the OpenSSL pkey command line application. For that reason that application is also vulnerable if used with the '-pubin' and '-check' options on untrusted data. The OpenSSL SSL/TLS implementation is not affected by this issue. The OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.

Severity

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-606 - Unchecked Input for Loop Condition

Assigner

openssl

References

10 references

URL	Tags
https://www.openssl.org/news/secadv/20240115.txt	vendor-advisory
https://github.com/openssl/openssl/commit/18c0249…	patch
https://github.com/openssl/openssl/commit/a830f55…	patch
https://github.com/openssl/openssl/commit/0b0f7ab…	patch
http://www.openwall.com/lists/oss-security/2024/03/11/1	x_transferred
https://security.netapp.com/advisory/ntap-2024053…	x_transferred
https://cert-portal.siemens.com/productcert/html/…
https://cert-portal.siemens.com/productcert/html/…
https://cert-portal.siemens.com/productcert/html/…
https://cert-portal.siemens.com/productcert/html/…

Impacted products

3 products

Vendor	Product	Version
OpenSSL	OpenSSL	Affected: 3.0.0 , < 3.0.13 (semver) Affected: 3.1.0 , < 3.1.5 (semver) Affected: 3.2.0 , < 3.2.1 (semver)
Siemens	SIMATIC S7-1500 TM MFP - GNU/Linux subsystem	Affected: 0 , < * (custom)
Siemens	SINEC NMS	Affected: 0 , < V3.0 SP1 (custom)

Date Public

2024-01-15 00:00

Credits

OSS-Fuzz Tomas Mraz

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T08:21:18.096Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "OpenSSL Advisory",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.openssl.org/news/secadv/20240115.txt"
          },
          {
            "name": "3.0.13 git commit",
            "tags": [
              "patch",
              "x_transferred"
            ],
            "url": "https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a"
          },
          {
            "name": "3.1.5 git commit",
            "tags": [
              "patch",
              "x_transferred"
            ],
            "url": "https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294"
          },
          {
            "name": "3.2.1 git commit",
            "tags": [
              "patch",
              "x_transferred"
            ],
            "url": "https://github.com/openssl/openssl/commit/0b0f7abfb37350794a4b8960fafc292cd5d1b84d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2024/03/11/1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20240531-0007/"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 5.9,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-6237",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-08-20T14:44:52.382969Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-01T14:28:51.338Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "affected": [
          {
            "defaultStatus": "unknown",
            "product": "SIMATIC S7-1500 TM MFP - GNU/Linux subsystem",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "SINEC NMS",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V3.0 SP1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-12T10:41:05.568Z",
          "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
          "shortName": "siemens-SADP"
        },
        "references": [
          {
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-265688.html"
          },
          {
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-331112.html"
          },
          {
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-915275.html"
          },
          {
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-769027.html"
          }
        ],
        "x_adpType": "supplier"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "OpenSSL",
          "vendor": "OpenSSL",
          "versions": [
            {
              "lessThan": "3.0.13",
              "status": "affected",
              "version": "3.0.0",
              "versionType": "semver"
            },
            {
              "lessThan": "3.1.5",
              "status": "affected",
              "version": "3.1.0",
              "versionType": "semver"
            },
            {
              "lessThan": "3.2.1",
              "status": "affected",
              "version": "3.2.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "OSS-Fuzz"
        },
        {
          "lang": "en",
          "type": "remediation developer",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Tomas Mraz"
        }
      ],
      "datePublic": "2024-01-15T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Issue summary: Checking excessively long invalid RSA public keys may take\u003cbr\u003ea long time.\u003cbr\u003e\u003cbr\u003eImpact summary: Applications that use the function EVP_PKEY_public_check()\u003cbr\u003eto check RSA public keys may experience long delays. Where the key that\u003cbr\u003eis being checked has been obtained from an untrusted source this may lead\u003cbr\u003eto a Denial of Service.\u003cbr\u003e\u003cbr\u003eWhen function EVP_PKEY_public_check() is called on RSA public keys,\u003cbr\u003ea computation is done to confirm that the RSA modulus, n, is composite.\u003cbr\u003eFor valid RSA keys, n is a product of two or more large primes and this\u003cbr\u003ecomputation completes quickly. However, if n is an overly large prime,\u003cbr\u003ethen this computation would take a long time.\u003cbr\u003e\u003cbr\u003eAn application that calls EVP_PKEY_public_check() and supplies an RSA key\u003cbr\u003eobtained from an untrusted source could be vulnerable to a Denial of Service\u003cbr\u003eattack.\u003cbr\u003e\u003cbr\u003eThe function EVP_PKEY_public_check() is not called from other OpenSSL\u003cbr\u003efunctions however it is called from the OpenSSL pkey command line\u003cbr\u003eapplication. For that reason that application is also vulnerable if used\u003cbr\u003ewith the \u0027-pubin\u0027 and \u0027-check\u0027 options on untrusted data.\u003cbr\u003e\u003cbr\u003eThe OpenSSL SSL/TLS implementation is not affected by this issue.\u003cbr\u003e\u003cbr\u003eThe OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue."
            }
          ],
          "value": "Issue summary: Checking excessively long invalid RSA public keys may take\na long time.\n\nImpact summary: Applications that use the function EVP_PKEY_public_check()\nto check RSA public keys may experience long delays. Where the key that\nis being checked has been obtained from an untrusted source this may lead\nto a Denial of Service.\n\nWhen function EVP_PKEY_public_check() is called on RSA public keys,\na computation is done to confirm that the RSA modulus, n, is composite.\nFor valid RSA keys, n is a product of two or more large primes and this\ncomputation completes quickly. However, if n is an overly large prime,\nthen this computation would take a long time.\n\nAn application that calls EVP_PKEY_public_check() and supplies an RSA key\nobtained from an untrusted source could be vulnerable to a Denial of Service\nattack.\n\nThe function EVP_PKEY_public_check() is not called from other OpenSSL\nfunctions however it is called from the OpenSSL pkey command line\napplication. For that reason that application is also vulnerable if used\nwith the \u0027-pubin\u0027 and \u0027-check\u0027 options on untrusted data.\n\nThe OpenSSL SSL/TLS implementation is not affected by this issue.\n\nThe OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue."
        }
      ],
      "metrics": [
        {
          "format": "other",
          "other": {
            "content": {
              "text": "Low"
            },
            "type": "https://www.openssl.org/policies/secpolicy.html"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-606",
              "description": "CWE-606 Unchecked Input for Loop Condition",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-10-14T14:55:56.955Z",
        "orgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
        "shortName": "openssl"
      },
      "references": [
        {
          "name": "OpenSSL Advisory",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.openssl.org/news/secadv/20240115.txt"
        },
        {
          "name": "3.0.13 git commit",
          "tags": [
            "patch"
          ],
          "url": "https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a"
        },
        {
          "name": "3.1.5 git commit",
          "tags": [
            "patch"
          ],
          "url": "https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294"
        },
        {
          "name": "3.2.1 git commit",
          "tags": [
            "patch"
          ],
          "url": "https://github.com/openssl/openssl/commit/0b0f7abfb37350794a4b8960fafc292cd5d1b84d"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Excessive time spent checking invalid RSA public keys",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
    "assignerShortName": "openssl",
    "cveId": "CVE-2023-6237",
    "datePublished": "2024-04-25T06:27:26.990Z",
    "dateReserved": "2023-11-21T10:16:34.346Z",
    "dateUpdated": "2026-05-12T10:41:05.568Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2023-6237",
      "date": "2026-06-08",
      "epss": "0.00944",
      "percentile": "0.76671"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-6237\",\"sourceIdentifier\":\"openssl-security@openssl.org\",\"published\":\"2024-04-25T07:15:45.270\",\"lastModified\":\"2026-05-12T11:16:17.790\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Issue summary: Checking excessively long invalid RSA public keys may take\\na long time.\\n\\nImpact summary: Applications that use the function EVP_PKEY_public_check()\\nto check RSA public keys may experience long delays. Where the key that\\nis being checked has been obtained from an untrusted source this may lead\\nto a Denial of Service.\\n\\nWhen function EVP_PKEY_public_check() is called on RSA public keys,\\na computation is done to confirm that the RSA modulus, n, is composite.\\nFor valid RSA keys, n is a product of two or more large primes and this\\ncomputation completes quickly. However, if n is an overly large prime,\\nthen this computation would take a long time.\\n\\nAn application that calls EVP_PKEY_public_check() and supplies an RSA key\\nobtained from an untrusted source could be vulnerable to a Denial of Service\\nattack.\\n\\nThe function EVP_PKEY_public_check() is not called from other OpenSSL\\nfunctions however it is called from the OpenSSL pkey command line\\napplication. For that reason that application is also vulnerable if used\\nwith the \u0027-pubin\u0027 and \u0027-check\u0027 options on untrusted data.\\n\\nThe OpenSSL SSL/TLS implementation is not affected by this issue.\\n\\nThe OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.\"},{\"lang\":\"es\",\"value\":\"Resumen del problema: la comprobaci\u00f3n de claves p\u00fablicas RSA inv\u00e1lidas excesivamente largas puede llevar mucho tiempo. Resumen de impacto: las aplicaciones que utilizan la funci\u00f3n EVP_PKEY_public_check() para comprobar las claves p\u00fablicas RSA pueden experimentar grandes retrasos. Cuando la clave que se est\u00e1 verificando se obtuvo de una fuente que no es confiable, esto puede dar lugar a una denegaci\u00f3n de servicio. Cuando se llama a la funci\u00f3n EVP_PKEY_public_check() en claves p\u00fablicas RSA, se realiza un c\u00e1lculo para confirmar que el m\u00f3dulo RSA, n, es compuesto. Para claves RSA v\u00e1lidas, n es un producto de dos o m\u00e1s n\u00fameros primos grandes y este c\u00e1lculo se completa r\u00e1pidamente. Sin embargo, si n es un n\u00famero primo demasiado grande, entonces este c\u00e1lculo llevar\u00eda mucho tiempo. Una aplicaci\u00f3n que llama a EVP_PKEY_public_check() y proporciona una clave RSA obtenida de una fuente que no es de confianza podr\u00eda ser vulnerable a un ataque de denegaci\u00f3n de servicio. La funci\u00f3n EVP_PKEY_public_check() no se llama desde otras funciones de OpenSSL, sin embargo, se llama desde la aplicaci\u00f3n de l\u00ednea de comandos pkey de OpenSSL. Por esa raz\u00f3n, esa aplicaci\u00f3n tambi\u00e9n es vulnerable si se usa con las opciones \u0027-pubin\u0027 y \u0027-check\u0027 en datos que no son de confianza. La implementaci\u00f3n de OpenSSL SSL/TLS no se ve afectada por este problema. Los proveedores FIPS OpenSSL 3.0 y 3.1 se ven afectados por este problema.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.9,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"openssl-security@openssl.org\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-606\"}]}],\"references\":[{\"url\":\"https://github.com/openssl/openssl/commit/0b0f7abfb37350794a4b8960fafc292cd5d1b84d\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"https://www.openssl.org/news/secadv/20240115.txt\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/03/11/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/openssl/openssl/commit/0b0f7abfb37350794a4b8960fafc292cd5d1b84d\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20240531-0007/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.openssl.org/news/secadv/20240115.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-265688.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\"},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-331112.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\"},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-769027.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\"},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-915275.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.openssl.org/news/secadv/20240115.txt\", \"name\": \"OpenSSL Advisory\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a\", \"name\": \"3.0.13 git commit\", \"tags\": [\"patch\", \"x_transferred\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294\", \"name\": \"3.1.5 git commit\", \"tags\": [\"patch\", \"x_transferred\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/0b0f7abfb37350794a4b8960fafc292cd5d1b84d\", \"name\": \"3.2.1 git commit\", \"tags\": [\"patch\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/03/11/1\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240531-0007/\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T08:21:18.096Z\"}}, {\"affected\": [{\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1500 TM MFP - GNU/Linux subsystem\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SINEC NMS\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V3.0 SP1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"x_adpType\": \"supplier\", \"references\": [{\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-265688.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-331112.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-915275.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-769027.html\"}], \"providerMetadata\": {\"orgId\": \"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\", \"shortName\": \"siemens-SADP\", \"dateUpdated\": \"2026-05-12T10:41:05.568Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.9, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-6237\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-08-20T14:44:52.382969Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-08-20T14:44:57.618Z\"}}], \"cna\": {\"title\": \"Excessive time spent checking invalid RSA public keys\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"user\": \"00000000-0000-4000-9000-000000000000\", \"value\": \"OSS-Fuzz\"}, {\"lang\": \"en\", \"type\": \"remediation developer\", \"user\": \"00000000-0000-4000-9000-000000000000\", \"value\": \"Tomas Mraz\"}], \"metrics\": [{\"other\": {\"type\": \"https://www.openssl.org/policies/secpolicy.html\", \"content\": {\"text\": \"Low\"}}, \"format\": \"other\"}], \"affected\": [{\"vendor\": \"OpenSSL\", \"product\": \"OpenSSL\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.0.0\", \"lessThan\": \"3.0.13\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"3.1.0\", \"lessThan\": \"3.1.5\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"3.2.0\", \"lessThan\": \"3.2.1\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}], \"datePublic\": \"2024-01-15T00:00:00.000Z\", \"references\": [{\"url\": \"https://www.openssl.org/news/secadv/20240115.txt\", \"name\": \"OpenSSL Advisory\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a\", \"name\": \"3.0.13 git commit\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294\", \"name\": \"3.1.5 git commit\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/0b0f7abfb37350794a4b8960fafc292cd5d1b84d\", \"name\": \"3.2.1 git commit\", \"tags\": [\"patch\"]}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Issue summary: Checking excessively long invalid RSA public keys may take\\na long time.\\n\\nImpact summary: Applications that use the function EVP_PKEY_public_check()\\nto check RSA public keys may experience long delays. Where the key that\\nis being checked has been obtained from an untrusted source this may lead\\nto a Denial of Service.\\n\\nWhen function EVP_PKEY_public_check() is called on RSA public keys,\\na computation is done to confirm that the RSA modulus, n, is composite.\\nFor valid RSA keys, n is a product of two or more large primes and this\\ncomputation completes quickly. However, if n is an overly large prime,\\nthen this computation would take a long time.\\n\\nAn application that calls EVP_PKEY_public_check() and supplies an RSA key\\nobtained from an untrusted source could be vulnerable to a Denial of Service\\nattack.\\n\\nThe function EVP_PKEY_public_check() is not called from other OpenSSL\\nfunctions however it is called from the OpenSSL pkey command line\\napplication. For that reason that application is also vulnerable if used\\nwith the \u0027-pubin\u0027 and \u0027-check\u0027 options on untrusted data.\\n\\nThe OpenSSL SSL/TLS implementation is not affected by this issue.\\n\\nThe OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Issue summary: Checking excessively long invalid RSA public keys may take\u003cbr\u003ea long time.\u003cbr\u003e\u003cbr\u003eImpact summary: Applications that use the function EVP_PKEY_public_check()\u003cbr\u003eto check RSA public keys may experience long delays. Where the key that\u003cbr\u003eis being checked has been obtained from an untrusted source this may lead\u003cbr\u003eto a Denial of Service.\u003cbr\u003e\u003cbr\u003eWhen function EVP_PKEY_public_check() is called on RSA public keys,\u003cbr\u003ea computation is done to confirm that the RSA modulus, n, is composite.\u003cbr\u003eFor valid RSA keys, n is a product of two or more large primes and this\u003cbr\u003ecomputation completes quickly. However, if n is an overly large prime,\u003cbr\u003ethen this computation would take a long time.\u003cbr\u003e\u003cbr\u003eAn application that calls EVP_PKEY_public_check() and supplies an RSA key\u003cbr\u003eobtained from an untrusted source could be vulnerable to a Denial of Service\u003cbr\u003eattack.\u003cbr\u003e\u003cbr\u003eThe function EVP_PKEY_public_check() is not called from other OpenSSL\u003cbr\u003efunctions however it is called from the OpenSSL pkey command line\u003cbr\u003eapplication. For that reason that application is also vulnerable if used\u003cbr\u003ewith the \u0027-pubin\u0027 and \u0027-check\u0027 options on untrusted data.\u003cbr\u003e\u003cbr\u003eThe OpenSSL SSL/TLS implementation is not affected by this issue.\u003cbr\u003e\u003cbr\u003eThe OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-606\", \"description\": \"CWE-606 Unchecked Input for Loop Condition\"}]}], \"providerMetadata\": {\"orgId\": \"3a12439a-ef3a-4c79-92e6-6081a721f1e5\", \"shortName\": \"openssl\", \"dateUpdated\": \"2024-10-14T14:55:56.955Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-6237\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-05-12T10:41:05.568Z\", \"dateReserved\": \"2023-11-21T10:16:34.346Z\", \"assignerOrgId\": \"3a12439a-ef3a-4c79-92e6-6081a721f1e5\", \"datePublished\": \"2024-04-25T06:27:26.990Z\", \"assignerShortName\": \"openssl\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

WID-SEC-W-2024-0093

Vulnerability from csaf_certbund - Published: 2024-01-15 23:00 - Updated: 2025-12-17 23:00

Summary

OpenSSL: Schwachstelle ermöglicht Denial of Service

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: OpenSSL ist eine im Quelltext frei verfügbare Bibliothek, die Secure Sockets Layer (SSL) und Transport Layer Security (TLS) implementiert.

Angriff: Ein entfernter, anonymer Angreifer kann eine Schwachstelle in OpenSSL ausnutzen, um einen Denial of Service Angriff durchzuführen.

Betroffene Betriebssysteme: - Linux

CVE-2023-6237

Affected products

Known affected 33 products

Product	Identifier	Version
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
IBM Rational ClearQuest IBM	`cpe:/a:ibm:rational_clearquest:-`	—
Hitachi Command Suite Hitachi	`cpe:/a:hitachi:command_suite:-`	—
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
IBM MQ <9.2.0.25 IBM / MQ		<9.2.0.25
Open Source OpenSSL <3.0.13 Open Source / OpenSSL		<3.0.13
Open Source OpenSSL <3.1.5 Open Source / OpenSSL		<3.1.5
IBM MQ <9.3.0.17 IBM / MQ		<9.3.0.17
Broadcom Fabric OS Broadcom / Fabric OS	`cpe:/o:broadcom:fabric_operating_system:-`	—
IBM AIX 7.3 IBM / AIX	`cpe:/o:ibm:aix:7.3`	7.3
HPE HP-UX OpenSSL Software <A.03.00.15.001 HPE / HP-UX		OpenSSL Software <A.03.00.15.001
Hitachi Configuration Manager Hitachi	`cpe:/a:hitachi:configuration_manager:-`	—
Broadcom Fabric OS <9.2.2 Broadcom / Fabric OS		<9.2.2
Open Source OpenSSL <3.2.1 Open Source / OpenSSL		<3.2.1
Broadcom Fabric OS <9.2.1a1 Broadcom / Fabric OS		<9.2.1a1
NetApp AFF Baseboard Management Controller NetApp / AFF	`cpe:/h:netapp:aff:::baseboard_management_controller`	Baseboard Management Controller
Open Source OpenSSL <3.0.13 Open Source / OpenSSL		<3.0.13
Open Source OpenSSL <3.1.5 Open Source / OpenSSL		<3.1.5
IBM AIX 7.2 IBM / AIX	`cpe:/o:ibm:aix:7.2`	7.2
IBM MQ <9.1.0.21 IBM / MQ		<9.1.0.21
Broadcom Fabric OS <9.2.0c Broadcom / Fabric OS		<9.2.0c
Checkmk Checkmk <2.2.0p24 tribe29 / checkmk		<2.2.0p24
IBM MQ <9.0.0.24 IBM / MQ		<9.0.0.24
IBM VIOS 3.1 IBM / VIOS	`cpe:/a:ibm:vios:3.1`	3.1
HPE Switch HPE	`cpe:/h:hp:switch:-`	—
IBM VIOS 4.1 IBM / VIOS	`cpe:/a:ibm:vios:4.1`	4.1
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
Hitachi Ops Center Hitachi	`cpe:/a:hitachi:ops_center:-`	—
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
NetApp FAS Baseboard Management Controller NetApp / FAS	`cpe:/h:netapp:fas:baseboard_management_controller`	Baseboard Management Controller
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
IBM Rational ClearCase IBM	`cpe:/a:ibm:rational_clearcase:-`	—

References

26 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.openssl.org/news/secadv/20240115.txt	external
https://bugzilla.redhat.com/show_bug.cgi?id=2258502	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://www.ibm.com/support/pages/node/7111837	external
https://www.openssl.org/news/openssl-3.1-notes.html	external
https://www.openssl.org/news/openssl-3.2-notes.html	external
https://www.openssl.org/news/openssl-3.0-notes.html	external
https://ubuntu.com/security/notices/USN-6622-1	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://checkmk.com/werk/16362	external
https://bodhi.fedoraproject.org/updates/FEDORA-EP…	external
https://www.ibm.com/support/pages/node/7149584	external
https://access.redhat.com/errata/RHSA-2024:2447	external
https://www.ibm.com/support/pages/node/7159761	external
https://www.ibm.com/support/pages/node/7160391	external
https://www.hitachi.com/products/it/software/secu…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://www.dell.com/support/kbdoc/de-de/00022621…	external
https://support.broadcom.com/web/ecx/support-cont…	external
https://support.hpe.com/hpesc/public/docDisplay?d…	external
https://securitydocs.business.xerox.com/wp-conten…	external
https://support.hpe.com/hpesc/public/docDisplay?d…	external
https://security.netapp.com/advisory/NTAP-20240531-0007	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "OpenSSL ist eine im Quelltext frei verf\u00fcgbare Bibliothek, die Secure Sockets Layer (SSL) und Transport Layer Security (TLS) implementiert.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in OpenSSL ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0093 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0093.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0093 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0093"
      },
      {
        "category": "external",
        "summary": "OpenSSL Security Advisory vom 2024-01-15",
        "url": "https://www.openssl.org/news/secadv/20240115.txt"
      },
      {
        "category": "external",
        "summary": "Red Hat Bugzilla vom 2024-01-15",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2258502"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0172-1 vom 2024-01-22",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-January/017739.html"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7111837 vom 2024-01-26",
        "url": "https://www.ibm.com/support/pages/node/7111837"
      },
      {
        "category": "external",
        "summary": "OpenSSL Release Notes",
        "url": "https://www.openssl.org/news/openssl-3.1-notes.html"
      },
      {
        "category": "external",
        "summary": "OpenSSL Release Notes",
        "url": "https://www.openssl.org/news/openssl-3.2-notes.html"
      },
      {
        "category": "external",
        "summary": "OpenSSL Release Notes",
        "url": "https://www.openssl.org/news/openssl-3.0-notes.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6622-1 vom 2024-02-05",
        "url": "https://ubuntu.com/security/notices/USN-6622-1"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:0518-1 vom 2024-02-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017939.html"
      },
      {
        "category": "external",
        "summary": "CheckMK Werk  16362 vom 2024-03-01",
        "url": "https://checkmk.com/werk/16362"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-EPEL-2024-B002585DD2 vom 2024-04-22",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-b002585dd2"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7149584 vom 2024-04-26",
        "url": "https://www.ibm.com/support/pages/node/7149584"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:2447 vom 2024-04-30",
        "url": "https://access.redhat.com/errata/RHSA-2024:2447"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7159761 vom 2024-07-15",
        "url": "https://www.ibm.com/support/pages/node/7159761"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7160391 vom 2024-07-16",
        "url": "https://www.ibm.com/support/pages/node/7160391"
      },
      {
        "category": "external",
        "summary": "Hitachi Vulnerability Information HITACHI-SEC-2024-145 vom 2024-09-17",
        "url": "https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2024-145/index.html"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2024-45DF72AFC6 vom 2024-10-11",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-45df72afc6"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2024-9CC95D56CE vom 2024-10-11",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-9cc95d56ce"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2024-281 vom 2024-10-15",
        "url": "https://www.dell.com/support/kbdoc/de-de/000226215/dsa-2024-281-security-update-for-dell-client-platform-for-multiple-openssl-vulnerabilities"
      },
      {
        "category": "external",
        "summary": "Brocade Security Advisory BSA-2024-2463 vom 2024-11-12",
        "url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24991"
      },
      {
        "category": "external",
        "summary": "HPE Security Bulletin vom 2024-11-14",
        "url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbux04744en_us\u0026docLocale=en_US"
      },
      {
        "category": "external",
        "summary": "XEROX Security Advisory XRX24-017 vom 2024-11-21",
        "url": "https://securitydocs.business.xerox.com/wp-content/uploads/2024/11/Xerox-Security-Bulletin-XRX24-017-for-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v9.pdf"
      },
      {
        "category": "external",
        "summary": "HPE Security Bulletin",
        "url": "https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-hpesbst04758en_us\u0026hprpt_id=ALERT_HPE_3075763\u0026jumpid=em_pom8nu6hj_aid-521053889"
      },
      {
        "category": "external",
        "summary": "NetApp Security Advisory NTAP-20240531-0007 vom 2025-12-17",
        "url": "https://security.netapp.com/advisory/NTAP-20240531-0007"
      }
    ],
    "source_lang": "en-US",
    "title": "OpenSSL: Schwachstelle erm\u00f6glicht Denial of Service",
    "tracking": {
      "current_release_date": "2025-12-17T23:00:00.000+00:00",
      "generator": {
        "date": "2025-12-18T08:50:12.451+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2024-0093",
      "initial_release_date": "2024-01-15T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-01-15T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-01-22T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-01-25T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2024-02-01T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates aufgenommen"
        },
        {
          "date": "2024-02-04T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-02-15T23:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-03-03T23:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von tribe29 aufgenommen"
        },
        {
          "date": "2024-04-22T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2024-04-28T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2024-04-29T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-07-15T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2024-09-16T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von HITACHI aufgenommen"
        },
        {
          "date": "2024-10-13T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2024-10-15T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Dell aufgenommen"
        },
        {
          "date": "2024-11-12T23:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von BROCADE aufgenommen"
        },
        {
          "date": "2024-11-14T23:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von HP aufgenommen"
        },
        {
          "date": "2024-11-21T23:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von XEROX aufgenommen"
        },
        {
          "date": "2025-01-07T23:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von HP aufgenommen"
        },
        {
          "date": "2025-12-17T23:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von NetApp aufgenommen"
        }
      ],
      "status": "final",
      "version": "19"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Broadcom Fabric OS",
                "product": {
                  "name": "Broadcom Fabric OS",
                  "product_id": "978054",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:broadcom:fabric_operating_system:-"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.2.0c",
                "product": {
                  "name": "Broadcom Fabric OS \u003c9.2.0c",
                  "product_id": "T038914"
                }
              },
              {
                "category": "product_version",
                "name": "9.2.0c",
                "product": {
                  "name": "Broadcom Fabric OS 9.2.0c",
                  "product_id": "T038914-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:broadcom:fabric_operating_system:9.2.0c"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.2.1a1",
                "product": {
                  "name": "Broadcom Fabric OS \u003c9.2.1a1",
                  "product_id": "T038915"
                }
              },
              {
                "category": "product_version",
                "name": "9.2.1a1",
                "product": {
                  "name": "Broadcom Fabric OS 9.2.1a1",
                  "product_id": "T038915-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:broadcom:fabric_operating_system:9.2.1a1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.2.2",
                "product": {
                  "name": "Broadcom Fabric OS \u003c9.2.2",
                  "product_id": "T038916"
                }
              },
              {
                "category": "product_version",
                "name": "9.2.2",
                "product": {
                  "name": "Broadcom Fabric OS 9.2.2",
                  "product_id": "T038916-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:broadcom:fabric_operating_system:9.2.2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Fabric OS"
          }
        ],
        "category": "vendor",
        "name": "Broadcom"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Dell Computer",
            "product": {
              "name": "Dell Computer",
              "product_id": "T036868",
              "product_identification_helper": {
                "cpe": "cpe:/o:dell:dell_computer:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Dell"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Fedora Linux",
            "product": {
              "name": "Fedora Linux",
              "product_id": "74185",
              "product_identification_helper": {
                "cpe": "cpe:/o:fedoraproject:fedora:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Fedora"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "OpenSSL Software \u003cA.03.00.15.001",
                "product": {
                  "name": "HPE HP-UX OpenSSL Software \u003cA.03.00.15.001",
                  "product_id": "T039192"
                }
              },
              {
                "category": "product_version",
                "name": "OpenSSL Software A.03.00.15.001",
                "product": {
                  "name": "HPE HP-UX OpenSSL Software A.03.00.15.001",
                  "product_id": "T039192-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:hp:hp-ux:openssl_software__a.03.00.15.001"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "HP-UX"
          },
          {
            "category": "product_name",
            "name": "HPE Switch",
            "product": {
              "name": "HPE Switch",
              "product_id": "T005119",
              "product_identification_helper": {
                "cpe": "cpe:/h:hp:switch:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "HPE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Hitachi Command Suite",
            "product": {
              "name": "Hitachi Command Suite",
              "product_id": "T010951",
              "product_identification_helper": {
                "cpe": "cpe:/a:hitachi:command_suite:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Hitachi Configuration Manager",
            "product": {
              "name": "Hitachi Configuration Manager",
              "product_id": "T020304",
              "product_identification_helper": {
                "cpe": "cpe:/a:hitachi:configuration_manager:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Hitachi Ops Center",
            "product": {
              "name": "Hitachi Ops Center",
              "product_id": "T017562",
              "product_identification_helper": {
                "cpe": "cpe:/a:hitachi:ops_center:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Hitachi"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "7.3",
                "product": {
                  "name": "IBM AIX 7.3",
                  "product_id": "1139691",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:ibm:aix:7.3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7.2",
                "product": {
                  "name": "IBM AIX 7.2",
                  "product_id": "434967",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:ibm:aix:7.2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "AIX"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c9.0.0.24",
                "product": {
                  "name": "IBM MQ \u003c9.0.0.24",
                  "product_id": "T034438"
                }
              },
              {
                "category": "product_version",
                "name": "9.0.0.24",
                "product": {
                  "name": "IBM MQ 9.0.0.24",
                  "product_id": "T034438-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:mq:9.0.0.24"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.1.0.21",
                "product": {
                  "name": "IBM MQ \u003c9.1.0.21",
                  "product_id": "T034439"
                }
              },
              {
                "category": "product_version",
                "name": "9.1.0.21",
                "product": {
                  "name": "IBM MQ 9.1.0.21",
                  "product_id": "T034439-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:mq:9.1.0.21"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.2.0.25",
                "product": {
                  "name": "IBM MQ \u003c9.2.0.25",
                  "product_id": "T034440"
                }
              },
              {
                "category": "product_version",
                "name": "9.2.0.25",
                "product": {
                  "name": "IBM MQ 9.2.0.25",
                  "product_id": "T034440-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:mq:9.2.0.25"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.3.0.17",
                "product": {
                  "name": "IBM MQ \u003c9.3.0.17",
                  "product_id": "T034441"
                }
              },
              {
                "category": "product_version",
                "name": "9.3.0.17",
                "product": {
                  "name": "IBM MQ 9.3.0.17",
                  "product_id": "T034441-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:mq:9.3.0.17"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "MQ"
          },
          {
            "category": "product_name",
            "name": "IBM Rational ClearCase",
            "product": {
              "name": "IBM Rational ClearCase",
              "product_id": "T004180",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:rational_clearcase:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "IBM Rational ClearQuest",
            "product": {
              "name": "IBM Rational ClearQuest",
              "product_id": "5168",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:rational_clearquest:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "3.1",
                "product": {
                  "name": "IBM VIOS 3.1",
                  "product_id": "1039165",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:vios:3.1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "4.1",
                "product": {
                  "name": "IBM VIOS 4.1",
                  "product_id": "1522854",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:vios:4.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "VIOS"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Baseboard Management Controller",
                "product": {
                  "name": "NetApp AFF Baseboard Management Controller",
                  "product_id": "T025086",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:netapp:aff:::baseboard_management_controller"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "AFF"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Baseboard Management Controller",
                "product": {
                  "name": "NetApp FAS Baseboard Management Controller",
                  "product_id": "T043535",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:netapp:fas:baseboard_management_controller"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "FAS"
          }
        ],
        "category": "vendor",
        "name": "NetApp"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c3.0.13",
                "product": {
                  "name": "Open Source OpenSSL \u003c3.0.13",
                  "product_id": "1520546"
                }
              },
              {
                "category": "product_version",
                "name": "3.0.13",
                "product": {
                  "name": "Open Source OpenSSL 3.0.13",
                  "product_id": "1520546-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:openssl:openssl:3.0.13"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c3.1.5",
                "product": {
                  "name": "Open Source OpenSSL \u003c3.1.5",
                  "product_id": "1520547"
                }
              },
              {
                "category": "product_version",
                "name": "3.1.5",
                "product": {
                  "name": "Open Source OpenSSL 3.1.5",
                  "product_id": "1520547-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:openssl:openssl:3.1.5"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c3.0.13",
                "product": {
                  "name": "Open Source OpenSSL \u003c3.0.13",
                  "product_id": "T032036"
                }
              },
              {
                "category": "product_version",
                "name": "3.0.13",
                "product": {
                  "name": "Open Source OpenSSL 3.0.13",
                  "product_id": "T032036-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:openssl:openssl:3.0.13"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c3.1.5",
                "product": {
                  "name": "Open Source OpenSSL \u003c3.1.5",
                  "product_id": "T032037"
                }
              },
              {
                "category": "product_version",
                "name": "3.1.5",
                "product": {
                  "name": "Open Source OpenSSL 3.1.5",
                  "product_id": "T032037-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:openssl:openssl:3.1.5"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c3.2.1",
                "product": {
                  "name": "Open Source OpenSSL \u003c3.2.1",
                  "product_id": "T032038"
                }
              },
              {
                "category": "product_version",
                "name": "3.2.1",
                "product": {
                  "name": "Open Source OpenSSL 3.2.1",
                  "product_id": "T032038-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:openssl:openssl:3.2.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "OpenSSL"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "v9",
                "product": {
                  "name": "Xerox FreeFlow Print Server v9",
                  "product_id": "T015632",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:xerox:freeflow_print_server:v9"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "FreeFlow Print Server"
          }
        ],
        "category": "vendor",
        "name": "Xerox"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c2.2.0p24",
                "product": {
                  "name": "Checkmk Checkmk \u003c2.2.0p24",
                  "product_id": "T033108"
                }
              },
              {
                "category": "product_version",
                "name": "2.2.0p24",
                "product": {
                  "name": "Checkmk Checkmk 2.2.0p24",
                  "product_id": "T033108-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:tribe29:checkmk:2.2.0p24"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "checkmk"
          }
        ],
        "category": "vendor",
        "name": "tribe29"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-6237",
      "product_status": {
        "known_affected": [
          "67646",
          "5168",
          "T010951",
          "T036868",
          "T034440",
          "1520546",
          "1520547",
          "T034441",
          "978054",
          "1139691",
          "T039192",
          "T020304",
          "T038916",
          "T032038",
          "T038915",
          "T025086",
          "T032036",
          "T032037",
          "434967",
          "T034439",
          "T038914",
          "T033108",
          "T034438",
          "1039165",
          "T005119",
          "1522854",
          "T015632",
          "74185",
          "T017562",
          "T002207",
          "T043535",
          "T000126",
          "T004180"
        ]
      },
      "release_date": "2024-01-15T23:00:00.000+00:00",
      "title": "CVE-2023-6237"
    }
  ]
}

WID-SEC-W-2024-0769

Vulnerability from csaf_certbund - Published: 2024-04-02 22:00 - Updated: 2024-11-07 23:00

Summary

IBM Rational Build Forge: Mehrere Schwachstellen

Severity

Mittel

Notes

Produktbeschreibung: IBM Rational Build Forge ist ein Framework zur Automatisierung und Standardisierung des Softwareerstellungsprozesses

Angriff: Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in IBM Rational Build Forge ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuführen.

Betroffene Betriebssysteme: - Linux - Sonstiges - UNIX - Windows

CVE-2023-22067

In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuführen. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich.

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2023-22081

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2023-31122

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2023-33850

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2023-43622

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2023-45802

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2023-46589

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2023-5676

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2023-5678

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2023-6129

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2023-6237

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2023-6710

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2024-0727

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2024-20918

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2024-20919

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2024-20921

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2024-20926

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2024-20945

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2024-20952

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2024-21733

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2024-23672

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

CVE-2024-24549

Affected products

Known affected 2 products

Product	Identifier	Version	Remediation
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
IBM Rational Build Forge <8.0.0.26 IBM / Rational Build Forge		<8.0.0.26

References

4 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.ibm.com/support/pages/node/7145704	external
https://lists.suse.com/pipermail/sle-security-upd…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "IBM Rational Build Forge ist ein Framework zur Automatisierung und Standardisierung des Softwareerstellungsprozesses",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer oder authentisierter Angreifer kann mehrere Schwachstellen in IBM Rational Build Forge ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0769 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0769.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0769 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0769"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin vom 2024-04-02",
        "url": "https://www.ibm.com/support/pages/node/7145704"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3949-1 vom 2024-11-08",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-November/019796.html"
      }
    ],
    "source_lang": "en-US",
    "title": "IBM Rational Build Forge: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-11-07T23:00:00.000+00:00",
      "generator": {
        "date": "2024-11-08T11:11:40.811+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.8"
        }
      },
      "id": "WID-SEC-W-2024-0769",
      "initial_release_date": "2024-04-02T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-04-02T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-11-07T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von SUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c8.0.0.26",
                "product": {
                  "name": "IBM Rational Build Forge \u003c8.0.0.26",
                  "product_id": "T033838"
                }
              },
              {
                "category": "product_version",
                "name": "8.0.0.26",
                "product": {
                  "name": "IBM Rational Build Forge 8.0.0.26",
                  "product_id": "T033838-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:rational_build_forge:8.0.0.26"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Rational Build Forge"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-22067",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2023-22067"
    },
    {
      "cve": "CVE-2023-22081",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2023-22081"
    },
    {
      "cve": "CVE-2023-31122",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2023-31122"
    },
    {
      "cve": "CVE-2023-33850",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2023-33850"
    },
    {
      "cve": "CVE-2023-43622",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2023-43622"
    },
    {
      "cve": "CVE-2023-45802",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2023-45802"
    },
    {
      "cve": "CVE-2023-46589",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2023-46589"
    },
    {
      "cve": "CVE-2023-5676",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2023-5676"
    },
    {
      "cve": "CVE-2023-5678",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2023-5678"
    },
    {
      "cve": "CVE-2023-6129",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2023-6129"
    },
    {
      "cve": "CVE-2023-6237",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2023-6237"
    },
    {
      "cve": "CVE-2023-6710",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2023-6710"
    },
    {
      "cve": "CVE-2024-0727",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2024-0727"
    },
    {
      "cve": "CVE-2024-20918",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2024-20918"
    },
    {
      "cve": "CVE-2024-20919",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2024-20919"
    },
    {
      "cve": "CVE-2024-20921",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2024-20921"
    },
    {
      "cve": "CVE-2024-20926",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2024-20926"
    },
    {
      "cve": "CVE-2024-20945",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2024-20945"
    },
    {
      "cve": "CVE-2024-20952",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2024-20952"
    },
    {
      "cve": "CVE-2024-21733",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2024-21733"
    },
    {
      "cve": "CVE-2024-23672",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2024-23672"
    },
    {
      "cve": "CVE-2024-24549",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Rational Build Forge existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern, u.a. Oracle Java SE, Apache HTTP Server, OpenSSL und Apache Tomcat. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren oder einen Denial of Service Zustand herbeizuf\u00fchren. Zur Ausnutzung einiger dieser Schwachstellen ist eine Nutzeraktion oder bestimmte Berechtigungen erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T002207",
          "T033838"
        ]
      },
      "release_date": "2024-04-02T22:00:00.000+00:00",
      "title": "CVE-2024-24549"
    }
  ]
}

WID-SEC-W-2024-1226

Vulnerability from csaf_certbund - Published: 2024-05-22 22:00 - Updated: 2025-11-18 23:00

Summary

Red Hat OpenShift: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.

Angriff: Ein Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um Dateien zu manipulieren, einen Denial-of-Service-Zustand zu verursachen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, seine Privilegien zu erweitern oder um weitere nicht spezifizierte Angriffe auszuführen.

Betroffene Betriebssysteme: - Linux

CVE-2020-26555

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2021-25220

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2021-29390

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2021-43618

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2022-0480

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2022-2795

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2022-3094

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2022-38096

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2022-40090

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2022-45934

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2022-48554

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2022-48624

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-24023

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-25193

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-25775

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-26159

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-26364

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-28322

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-28464

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-28866

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-2975

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-31083

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-31122

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-3446

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-3567

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-3618

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-37453

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-3817

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-38469

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-38470

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-38471

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-38472

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-38473

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-38546

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-39189

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-39193

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-39194

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-39198

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-39326

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-40745

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-41175

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-4133

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-42754

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-42756

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-43785

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-43786

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-43787

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-43788

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-43789

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-4408

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-45286

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-45287

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-45288

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-45289

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-45290

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-45857

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-45863

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-46218

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-46862

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-47038

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-48631

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-50387

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-50868

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-51043

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-51779

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-51780

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-52425

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-52434

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-52448

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-52476

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-52489

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-52522

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-52529

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-52574

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-52578

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-52580

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-52581

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-52597

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-52610

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-52620

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-5678

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-6040

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-6121

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-6129

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-6176

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-6228

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-6237

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-6240

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-6531

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-6546

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-6622

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-6915

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-6931

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-6932

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2023-7008

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-0565

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-0727

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-0841

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-1085

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-1086

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-1394

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-1488

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-21011

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-21012

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-21068

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-21085

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-21094

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-22365

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-24783

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-24784

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-24785

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-24786

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-25062

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-25742

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-25743

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-26582

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-26583

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-26584

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-26585

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-26586

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-26593

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-26602

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-26609

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-26633

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-27316

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-28834

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-28835

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-28849

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-29180

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-2961

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-33599

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-33600

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-33601

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

CVE-2024-33602

Affected products

Known affected 26 products

Product	Identifier	Version
Red Hat OpenShift GitOps 1.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:gitops_1.12`	GitOps 1.12
Red Hat OpenShift CodeReady Workspaces Red Hat / OpenShift	`cpe:/a:redhat:openshift:codeready_workspaces`	CodeReady Workspaces
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Red Hat / OpenShift	`cpe:/a:redhat:openshift:-`	—
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1
Red Hat OpenShift Migration Toolkit for Applications <7.0.3 Red Hat / OpenShift		Migration Toolkit for Applications <7.0.3
Red Hat OpenShift Network Observability 1.6 Red Hat / OpenShift	`cpe:/a:redhat:openshift:network_observability_1.6`	Network Observability 1.6
Red Hat OpenShift Secondary Scheduler Operator Red Hat / OpenShift	`cpe:/a:redhat:openshift:::secondary_scheduler_operator`	Secondary Scheduler Operator
Red Hat OpenShift Kube Descheduler Operator 5 Red Hat / OpenShift	`cpe:/a:redhat:openshift:kube_descheduler_operator_5`	Kube Descheduler Operator 5
Red Hat OpenShift Data Foundation <4.14.13 Red Hat / OpenShift		Data Foundation <4.14.13
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Red Hat OpenShift Serverless Logic <1.35.0 Red Hat / OpenShift		Serverless Logic <1.35.0
Atlassian Bitbucket <9.4.13 (LTS) Atlassian / Bitbucket		<9.4.13 (LTS)
Atlassian Bitbucket <8.19.25 (LTS) Atlassian / Bitbucket		<8.19.25 (LTS)
Atlassian Bitbucket <10.0.2 Atlassian / Bitbucket		<10.0.2
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4`	Advanced Cluster Security for Kubernetes 4
Red Hat OpenShift Container Platform <4.16.8 Red Hat / OpenShift		Container Platform <4.16.8
Red Hat OpenShift for Windows Containers <10.15.3 Red Hat / OpenShift		for Windows Containers <10.15.3
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
RESF Rocky Linux RESF	`cpe:/o:resf:rocky_linux:-`	—
Red Hat OpenShift Custom Metric Autoscaler 2 Red Hat / OpenShift	`cpe:/a:redhat:openshift:custom_metric_autoscaler_2`	Custom Metric Autoscaler 2
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Red Hat OpenShift GitOps <1.15.2 Red Hat / OpenShift		GitOps <1.15.2

References

49 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://access.redhat.com/errata/RHSA-2024:2874	external
https://access.redhat.com/errata/RHSA-2024:2929	external
https://access.redhat.com/errata/RHSA-2024:2930	external
https://access.redhat.com/errata/RHSA-2024:2932	external
https://access.redhat.com/errata/RHSA-2024:2933	external
https://access.redhat.com/errata/RHSA-2024:3316	external
https://access.redhat.com/errata/RHSA-2024:2901	external
https://access.redhat.com/errata/RHSA-2024:3473	external
https://access.redhat.com/errata/RHSA-2024:3790	external
https://access.redhat.com/errata/RHSA-2024:3715	external
https://access.redhat.com/errata/RHSA-2024:3314	external
https://access.redhat.com/errata/RHSA-2024:3919	external
https://errata.build.resf.org/RLSA-2024:3830	external
https://errata.build.resf.org/RLSA-2024:3827	external
https://access.redhat.com/errata/RHSA-2024:3868	external
https://errata.build.resf.org/RLSA-2024:3826	external
https://access.redhat.com/errata/RHSA-2024:3889	external
https://access.redhat.com/errata/RHSA-2024:3989	external
https://access.redhat.com/errata/RHSA-2024:4163	external
https://access.redhat.com/errata/RHSA-2024:3637	external
https://access.redhat.com/errata/RHSA-2024:1616	external
https://access.redhat.com/errata/RHSA-2024:3617	external
https://access.redhat.com/errata/RHSA-2024:4269	external
https://access.redhat.com/errata/RHSA-2024:4553	external
https://access.redhat.com/errata/RHSA-2024:4699	external
https://access.redhat.com/errata/RHSA-2024:4455	external
https://alas.aws.amazon.com/AL2/ALASDOCKER-2024-0…	external
https://access.redhat.com/errata/RHSA-2024:5422	external
https://access.redhat.com/errata/RHSA-2024:5745	external
https://access.redhat.com/errata/RHSA-2024:6667	external
https://access.redhat.com/errata/RHSA-2024:6755	external
https://access.redhat.com/errata/RHSA-2024:7164	external
https://access.redhat.com/errata/RHSA-2024:7184	external
https://access.redhat.com/errata/RHSA-2024:8318	external
https://access.redhat.com/errata/RHSA-2024:8676	external
https://access.redhat.com/errata/RHSA-2024:8677	external
https://access.redhat.com/errata/RHSA-2024:8688	external
https://access.redhat.com/errata/RHSA-2024:8692	external
https://access.redhat.com/errata/RHSA-2024:9088	external
https://ubuntu.com/security/notices/USN-7121-2	external
https://access.redhat.com/errata/RHSA-2025:0164	external
https://access.redhat.com/errata/RHSA-2025:0323	external
https://access.redhat.com/errata/RHSA-2025:0664	external
https://access.redhat.com/errata/RHSA-2025:0832	external
https://access.redhat.com/errata/RHSA-2025:2876	external
https://access.redhat.com/errata/RHSA-2025:7753	external
https://confluence.atlassian.com/security/securit…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um Dateien zu manipulieren, einen Denial-of-Service-Zustand zu verursachen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen,  seine Privilegien zu erweitern oder  um weitere nicht spezifizierte Angriffe auszuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1226 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1226.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1226 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1226"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:2874 vom 2024-05-22",
        "url": "https://access.redhat.com/errata/RHSA-2024:2874"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:2929 vom 2024-05-22",
        "url": "https://access.redhat.com/errata/RHSA-2024:2929"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:2930 vom 2024-05-22",
        "url": "https://access.redhat.com/errata/RHSA-2024:2930"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:2932 vom 2024-05-22",
        "url": "https://access.redhat.com/errata/RHSA-2024:2932"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:2933 vom 2024-05-22",
        "url": "https://access.redhat.com/errata/RHSA-2024:2933"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:2874 vom 2024-05-22",
        "url": "https://access.redhat.com/errata/RHSA-2024:3316"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:2901 vom 2024-05-23",
        "url": "https://access.redhat.com/errata/RHSA-2024:2901"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3473 vom 2024-05-29",
        "url": "https://access.redhat.com/errata/RHSA-2024:3473"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3790 vom 2024-06-11",
        "url": "https://access.redhat.com/errata/RHSA-2024:3790"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3715 vom 2024-06-12",
        "url": "https://access.redhat.com/errata/RHSA-2024:3715"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3314 vom 2024-06-13",
        "url": "https://access.redhat.com/errata/RHSA-2024:3314"
      },
      {
        "category": "external",
        "summary": "RedHat Security Advisory",
        "url": "https://access.redhat.com/errata/RHSA-2024:3919"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2024:3830 vom 2024-06-14",
        "url": "https://errata.build.resf.org/RLSA-2024:3830"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2024:3827 vom 2024-06-14",
        "url": "https://errata.build.resf.org/RLSA-2024:3827"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3868 vom 2024-06-17",
        "url": "https://access.redhat.com/errata/RHSA-2024:3868"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2024:3826 vom 2024-06-14",
        "url": "https://errata.build.resf.org/RLSA-2024:3826"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3889 vom 2024-06-19",
        "url": "https://access.redhat.com/errata/RHSA-2024:3889"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3989 vom 2024-06-20",
        "url": "https://access.redhat.com/errata/RHSA-2024:3989"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:4163 vom 2024-06-27",
        "url": "https://access.redhat.com/errata/RHSA-2024:4163"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3637 vom 2024-07-01",
        "url": "https://access.redhat.com/errata/RHSA-2024:3637"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:1616 vom 2024-07-01",
        "url": "https://access.redhat.com/errata/RHSA-2024:1616"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3617 vom 2024-07-01",
        "url": "https://access.redhat.com/errata/RHSA-2024:3617"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:4269 vom 2024-07-03",
        "url": "https://access.redhat.com/errata/RHSA-2024:4269"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:4553 vom 2024-07-16",
        "url": "https://access.redhat.com/errata/RHSA-2024:4553"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:4699 vom 2024-07-25",
        "url": "https://access.redhat.com/errata/RHSA-2024:4699"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:4455 vom 2024-07-29",
        "url": "https://access.redhat.com/errata/RHSA-2024:4455"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALASDOCKER-2024-041 vom 2024-08-13",
        "url": "https://alas.aws.amazon.com/AL2/ALASDOCKER-2024-041.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:5422 vom 2024-08-20",
        "url": "https://access.redhat.com/errata/RHSA-2024:5422"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:5745 vom 2024-08-22",
        "url": "https://access.redhat.com/errata/RHSA-2024:5745"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:6667 vom 2024-09-13",
        "url": "https://access.redhat.com/errata/RHSA-2024:6667"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:6755 vom 2024-09-18",
        "url": "https://access.redhat.com/errata/RHSA-2024:6755"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:7164 vom 2024-09-26",
        "url": "https://access.redhat.com/errata/RHSA-2024:7164"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:7184 vom 2024-10-03",
        "url": "https://access.redhat.com/errata/RHSA-2024:7184"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:8318 vom 2024-10-23",
        "url": "https://access.redhat.com/errata/RHSA-2024:8318"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:8676 vom 2024-10-30",
        "url": "https://access.redhat.com/errata/RHSA-2024:8676"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:8677 vom 2024-10-30",
        "url": "https://access.redhat.com/errata/RHSA-2024:8677"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:8688 vom 2024-11-06",
        "url": "https://access.redhat.com/errata/RHSA-2024:8688"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:8692 vom 2024-11-07",
        "url": "https://access.redhat.com/errata/RHSA-2024:8692"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:9088 vom 2024-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2024:9088"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7121-2 vom 2024-11-20",
        "url": "https://ubuntu.com/security/notices/USN-7121-2"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:0164 vom 2025-01-09",
        "url": "https://access.redhat.com/errata/RHSA-2025:0164"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:0323 vom 2025-01-15",
        "url": "https://access.redhat.com/errata/RHSA-2025:0323"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:0664 vom 2025-01-23",
        "url": "https://access.redhat.com/errata/RHSA-2025:0664"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:0832 vom 2025-02-06",
        "url": "https://access.redhat.com/errata/RHSA-2025:0832"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:2876 vom 2025-03-17",
        "url": "https://access.redhat.com/errata/RHSA-2025:2876"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:7753 vom 2025-05-16",
        "url": "https://access.redhat.com/errata/RHSA-2025:7753"
      },
      {
        "category": "external",
        "summary": "Atlassian Security Bulletin - November 18 2025",
        "url": "https://confluence.atlassian.com/security/security-bulletin-november-18-2025-1671463469.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Red Hat OpenShift: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-11-18T23:00:00.000+00:00",
      "generator": {
        "date": "2025-11-19T09:42:49.985+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2024-1226",
      "initial_release_date": "2024-05-22T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-05-22T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-05-23T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-05-30T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-06-10T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-06-11T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-06-13T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-06-16T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Rocky Enterprise Software Foundation und Red Hat aufgenommen"
        },
        {
          "date": "2024-06-18T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-06-19T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-06-27T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-06-30T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-07-02T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-07-15T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-07-25T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-07-29T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-08-13T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2024-08-20T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-08-21T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-09-12T22:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-09-18T22:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-09-25T22:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-10-03T22:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-10-23T22:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-10-30T23:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-11-06T23:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-11-11T23:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-11-20T23:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-01-08T23:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-01-14T23:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-01-23T23:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-02-05T23:00:00.000+00:00",
          "number": "31",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-03-16T23:00:00.000+00:00",
          "number": "32",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-05-15T22:00:00.000+00:00",
          "number": "33",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-11-18T23:00:00.000+00:00",
          "number": "34",
          "summary": "Neue Updates aufgenommen"
        }
      ],
      "status": "final",
      "version": "34"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c10.0.2",
                "product": {
                  "name": "Atlassian Bitbucket \u003c10.0.2",
                  "product_id": "T048675"
                }
              },
              {
                "category": "product_version",
                "name": "10.0.2",
                "product": {
                  "name": "Atlassian Bitbucket 10.0.2",
                  "product_id": "T048675-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:10.0.2"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c8.19.25 (LTS)",
                "product": {
                  "name": "Atlassian Bitbucket \u003c8.19.25 (LTS)",
                  "product_id": "T048676"
                }
              },
              {
                "category": "product_version",
                "name": "8.19.25 (LTS)",
                "product": {
                  "name": "Atlassian Bitbucket 8.19.25 (LTS)",
                  "product_id": "T048676-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:8.19.25_%28lts%29"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.4.13 (LTS)",
                "product": {
                  "name": "Atlassian Bitbucket \u003c9.4.13 (LTS)",
                  "product_id": "T048677"
                }
              },
              {
                "category": "product_version",
                "name": "9.4.13 (LTS)",
                "product": {
                  "name": "Atlassian Bitbucket 9.4.13 (LTS)",
                  "product_id": "T048677-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bitbucket:9.4.13_%28lts%29"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Bitbucket"
          }
        ],
        "category": "vendor",
        "name": "Atlassian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "RESF Rocky Linux",
            "product": {
              "name": "RESF Rocky Linux",
              "product_id": "T032255",
              "product_identification_helper": {
                "cpe": "cpe:/o:resf:rocky_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "RESF"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux",
                "product": {
                  "name": "Red Hat Enterprise Linux",
                  "product_id": "67646",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Advanced Cluster Security for Kubernetes 4",
                "product": {
                  "name": "Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4",
                  "product_id": "T033787",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux",
                "product": {
                  "name": "Red Hat Enterprise Linux",
                  "product_id": "T035142",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9",
                "product": {
                  "name": "Red Hat Enterprise Linux 9",
                  "product_id": "T038901",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:9"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Secondary Scheduler Operator",
                "product": {
                  "name": "Red Hat OpenShift Secondary Scheduler Operator",
                  "product_id": "T027759",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:::secondary_scheduler_operator"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Kube Descheduler Operator 5",
                "product": {
                  "name": "Red Hat OpenShift Kube Descheduler Operator 5",
                  "product_id": "T033270",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:kube_descheduler_operator_5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat OpenShift",
                "product": {
                  "name": "Red Hat OpenShift",
                  "product_id": "T035034",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:-"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Migration Toolkit for Applications \u003c7.0.3",
                "product": {
                  "name": "Red Hat OpenShift Migration Toolkit for Applications \u003c7.0.3",
                  "product_id": "T035036"
                }
              },
              {
                "category": "product_version",
                "name": "Migration Toolkit for Applications 7.0.3",
                "product": {
                  "name": "Red Hat OpenShift Migration Toolkit for Applications 7.0.3",
                  "product_id": "T035036-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:migration_toolkit_for_applications__7.0.3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Custom Metric Autoscaler 2",
                "product": {
                  "name": "Red Hat OpenShift Custom Metric Autoscaler 2",
                  "product_id": "T035047",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:custom_metric_autoscaler_2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Network Observability 1.6",
                "product": {
                  "name": "Red Hat OpenShift Network Observability 1.6",
                  "product_id": "T035431",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:network_observability_1.6"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "GitOps 1.12",
                "product": {
                  "name": "Red Hat OpenShift GitOps 1.12",
                  "product_id": "T035679",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:gitops_1.12"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Run Once Duration Override Operator 1",
                "product": {
                  "name": "Red Hat OpenShift Run Once Duration Override Operator 1",
                  "product_id": "T035698",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:run_once_duration_override_operator_1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.16.8",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.16.8",
                  "product_id": "T036959"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.16.8",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.16.8",
                  "product_id": "T036959-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.16.8"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "for Windows Containers \u003c10.15.3",
                "product": {
                  "name": "Red Hat OpenShift for Windows Containers \u003c10.15.3",
                  "product_id": "T036993"
                }
              },
              {
                "category": "product_version",
                "name": "for Windows Containers 10.15.3",
                "product": {
                  "name": "Red Hat OpenShift for Windows Containers 10.15.3",
                  "product_id": "T036993-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:for_windows_containers__10.15.3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "CodeReady Workspaces",
                "product": {
                  "name": "Red Hat OpenShift CodeReady Workspaces",
                  "product_id": "T037618",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:codeready_workspaces"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.14.38",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.14.38",
                  "product_id": "T037940"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.14.38",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.14.38",
                  "product_id": "T037940-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.14.38"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Data Foundation \u003c4.14.13",
                "product": {
                  "name": "Red Hat OpenShift Data Foundation \u003c4.14.13",
                  "product_id": "T040215"
                }
              },
              {
                "category": "product_version",
                "name": "Data Foundation 4.14.13",
                "product": {
                  "name": "Red Hat OpenShift Data Foundation 4.14.13",
                  "product_id": "T040215-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:data_foundation__4.14.13"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Serverless Logic \u003c1.35.0",
                "product": {
                  "name": "Red Hat OpenShift Serverless Logic \u003c1.35.0",
                  "product_id": "T040597"
                }
              },
              {
                "category": "product_version",
                "name": "Serverless Logic 1.35.0",
                "product": {
                  "name": "Red Hat OpenShift Serverless Logic 1.35.0",
                  "product_id": "T040597-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:serverless_logic__1.35.0"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.12.72",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.12.72",
                  "product_id": "T040822"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.12.72",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.12.72",
                  "product_id": "T040822-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.12.72"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "GitOps \u003c1.15.2",
                "product": {
                  "name": "Red Hat OpenShift GitOps \u003c1.15.2",
                  "product_id": "T043834"
                }
              },
              {
                "category": "product_version",
                "name": "GitOps 1.15.2",
                "product": {
                  "name": "Red Hat OpenShift GitOps 1.15.2",
                  "product_id": "T043834-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:gitops__1.15.2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "OpenShift"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-26555",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2020-26555"
    },
    {
      "cve": "CVE-2021-25220",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2021-25220"
    },
    {
      "cve": "CVE-2021-29390",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2021-29390"
    },
    {
      "cve": "CVE-2021-43618",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2021-43618"
    },
    {
      "cve": "CVE-2022-0480",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2022-0480"
    },
    {
      "cve": "CVE-2022-2795",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2022-2795"
    },
    {
      "cve": "CVE-2022-3094",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2022-3094"
    },
    {
      "cve": "CVE-2022-38096",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2022-38096"
    },
    {
      "cve": "CVE-2022-40090",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2022-40090"
    },
    {
      "cve": "CVE-2022-45934",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2022-45934"
    },
    {
      "cve": "CVE-2022-48554",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2022-48554"
    },
    {
      "cve": "CVE-2022-48624",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2022-48624"
    },
    {
      "cve": "CVE-2023-24023",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-24023"
    },
    {
      "cve": "CVE-2023-25193",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-25193"
    },
    {
      "cve": "CVE-2023-25775",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-25775"
    },
    {
      "cve": "CVE-2023-26159",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-26159"
    },
    {
      "cve": "CVE-2023-26364",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-26364"
    },
    {
      "cve": "CVE-2023-28322",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-28322"
    },
    {
      "cve": "CVE-2023-28464",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-28464"
    },
    {
      "cve": "CVE-2023-28866",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-28866"
    },
    {
      "cve": "CVE-2023-2975",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-2975"
    },
    {
      "cve": "CVE-2023-31083",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-31083"
    },
    {
      "cve": "CVE-2023-31122",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-31122"
    },
    {
      "cve": "CVE-2023-3446",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-3446"
    },
    {
      "cve": "CVE-2023-3567",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-3567"
    },
    {
      "cve": "CVE-2023-3618",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-3618"
    },
    {
      "cve": "CVE-2023-37453",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-37453"
    },
    {
      "cve": "CVE-2023-3817",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-3817"
    },
    {
      "cve": "CVE-2023-38469",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-38469"
    },
    {
      "cve": "CVE-2023-38470",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-38470"
    },
    {
      "cve": "CVE-2023-38471",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-38471"
    },
    {
      "cve": "CVE-2023-38472",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-38472"
    },
    {
      "cve": "CVE-2023-38473",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-38473"
    },
    {
      "cve": "CVE-2023-38546",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-38546"
    },
    {
      "cve": "CVE-2023-39189",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-39189"
    },
    {
      "cve": "CVE-2023-39193",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-39193"
    },
    {
      "cve": "CVE-2023-39194",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-39194"
    },
    {
      "cve": "CVE-2023-39198",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-39198"
    },
    {
      "cve": "CVE-2023-39326",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-39326"
    },
    {
      "cve": "CVE-2023-40745",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-40745"
    },
    {
      "cve": "CVE-2023-41175",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-41175"
    },
    {
      "cve": "CVE-2023-4133",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-4133"
    },
    {
      "cve": "CVE-2023-42754",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-42754"
    },
    {
      "cve": "CVE-2023-42756",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-42756"
    },
    {
      "cve": "CVE-2023-43785",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-43785"
    },
    {
      "cve": "CVE-2023-43786",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-43786"
    },
    {
      "cve": "CVE-2023-43787",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-43787"
    },
    {
      "cve": "CVE-2023-43788",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-43788"
    },
    {
      "cve": "CVE-2023-43789",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-43789"
    },
    {
      "cve": "CVE-2023-4408",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-4408"
    },
    {
      "cve": "CVE-2023-45286",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-45286"
    },
    {
      "cve": "CVE-2023-45287",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-45287"
    },
    {
      "cve": "CVE-2023-45288",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-45288"
    },
    {
      "cve": "CVE-2023-45289",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-45289"
    },
    {
      "cve": "CVE-2023-45290",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-45290"
    },
    {
      "cve": "CVE-2023-45857",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-45857"
    },
    {
      "cve": "CVE-2023-45863",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-45863"
    },
    {
      "cve": "CVE-2023-46218",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-46218"
    },
    {
      "cve": "CVE-2023-46862",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-46862"
    },
    {
      "cve": "CVE-2023-47038",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-47038"
    },
    {
      "cve": "CVE-2023-48631",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-48631"
    },
    {
      "cve": "CVE-2023-50387",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-50387"
    },
    {
      "cve": "CVE-2023-50868",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-50868"
    },
    {
      "cve": "CVE-2023-51043",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-51043"
    },
    {
      "cve": "CVE-2023-51779",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-51779"
    },
    {
      "cve": "CVE-2023-51780",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-51780"
    },
    {
      "cve": "CVE-2023-52425",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-52425"
    },
    {
      "cve": "CVE-2023-52434",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-52434"
    },
    {
      "cve": "CVE-2023-52448",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-52448"
    },
    {
      "cve": "CVE-2023-52476",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-52476"
    },
    {
      "cve": "CVE-2023-52489",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-52489"
    },
    {
      "cve": "CVE-2023-52522",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-52522"
    },
    {
      "cve": "CVE-2023-52529",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-52529"
    },
    {
      "cve": "CVE-2023-52574",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-52574"
    },
    {
      "cve": "CVE-2023-52578",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-52578"
    },
    {
      "cve": "CVE-2023-52580",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-52580"
    },
    {
      "cve": "CVE-2023-52581",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-52581"
    },
    {
      "cve": "CVE-2023-52597",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-52597"
    },
    {
      "cve": "CVE-2023-52610",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-52610"
    },
    {
      "cve": "CVE-2023-52620",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-52620"
    },
    {
      "cve": "CVE-2023-5678",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-5678"
    },
    {
      "cve": "CVE-2023-6040",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-6040"
    },
    {
      "cve": "CVE-2023-6121",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-6121"
    },
    {
      "cve": "CVE-2023-6129",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-6129"
    },
    {
      "cve": "CVE-2023-6176",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-6176"
    },
    {
      "cve": "CVE-2023-6228",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-6228"
    },
    {
      "cve": "CVE-2023-6237",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-6237"
    },
    {
      "cve": "CVE-2023-6240",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-6240"
    },
    {
      "cve": "CVE-2023-6531",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-6531"
    },
    {
      "cve": "CVE-2023-6546",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-6546"
    },
    {
      "cve": "CVE-2023-6622",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-6622"
    },
    {
      "cve": "CVE-2023-6915",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-6915"
    },
    {
      "cve": "CVE-2023-6931",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-6931"
    },
    {
      "cve": "CVE-2023-6932",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-6932"
    },
    {
      "cve": "CVE-2023-7008",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2023-7008"
    },
    {
      "cve": "CVE-2024-0565",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-0565"
    },
    {
      "cve": "CVE-2024-0727",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-0727"
    },
    {
      "cve": "CVE-2024-0841",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-0841"
    },
    {
      "cve": "CVE-2024-1085",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-1085"
    },
    {
      "cve": "CVE-2024-1086",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-1086"
    },
    {
      "cve": "CVE-2024-1394",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-1394"
    },
    {
      "cve": "CVE-2024-1488",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-1488"
    },
    {
      "cve": "CVE-2024-21011",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-21011"
    },
    {
      "cve": "CVE-2024-21012",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-21012"
    },
    {
      "cve": "CVE-2024-21068",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-21068"
    },
    {
      "cve": "CVE-2024-21085",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-21085"
    },
    {
      "cve": "CVE-2024-21094",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-21094"
    },
    {
      "cve": "CVE-2024-22365",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-22365"
    },
    {
      "cve": "CVE-2024-24783",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-24783"
    },
    {
      "cve": "CVE-2024-24784",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-24784"
    },
    {
      "cve": "CVE-2024-24785",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-24785"
    },
    {
      "cve": "CVE-2024-24786",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-24786"
    },
    {
      "cve": "CVE-2024-25062",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-25062"
    },
    {
      "cve": "CVE-2024-25742",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-25742"
    },
    {
      "cve": "CVE-2024-25743",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-25743"
    },
    {
      "cve": "CVE-2024-26582",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-26582"
    },
    {
      "cve": "CVE-2024-26583",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-26583"
    },
    {
      "cve": "CVE-2024-26584",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-26584"
    },
    {
      "cve": "CVE-2024-26585",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-26585"
    },
    {
      "cve": "CVE-2024-26586",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-26586"
    },
    {
      "cve": "CVE-2024-26593",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-26593"
    },
    {
      "cve": "CVE-2024-26602",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-26602"
    },
    {
      "cve": "CVE-2024-26609",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-26609"
    },
    {
      "cve": "CVE-2024-26633",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-26633"
    },
    {
      "cve": "CVE-2024-27316",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-27316"
    },
    {
      "cve": "CVE-2024-28834",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-28834"
    },
    {
      "cve": "CVE-2024-28835",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-28835"
    },
    {
      "cve": "CVE-2024-28849",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-28849"
    },
    {
      "cve": "CVE-2024-29180",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-29180"
    },
    {
      "cve": "CVE-2024-2961",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-2961"
    },
    {
      "cve": "CVE-2024-33599",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-33599"
    },
    {
      "cve": "CVE-2024-33600",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-33600"
    },
    {
      "cve": "CVE-2024-33601",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-33601"
    },
    {
      "cve": "CVE-2024-33602",
      "product_status": {
        "known_affected": [
          "T035679",
          "T037618",
          "T038901",
          "67646",
          "T040822",
          "T035034",
          "T035698",
          "T035036",
          "T035431",
          "T027759",
          "T033270",
          "T040215",
          "398363",
          "T040597",
          "T048677",
          "T048676",
          "T048675",
          "T033787",
          "T036959",
          "T036993",
          "T037940",
          "T035142",
          "T032255",
          "T035047",
          "T000126",
          "T043834"
        ]
      },
      "release_date": "2024-05-22T22:00:00.000+00:00",
      "title": "CVE-2024-33602"
    }
  ]
}

WID-SEC-W-2024-1307

Vulnerability from csaf_certbund - Published: 2024-06-06 22:00 - Updated: 2025-02-05 23:00

Summary

Red Hat OpenShift Service Mesh Containers: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.

Angriff: Ein Angreifer kann mehrere Schwachstellen in Red Hat OpenShift Service Mesh Containers ausnutzen, um Dateien zu manipulieren, einen 'Denial of Service'-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.

Betroffene Betriebssysteme: - Linux

CVE-2021-25220

In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuführen.

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2021-43618

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2021-46848

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2022-1271

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2022-2795

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2022-3094

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2022-36227

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2022-47024

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2022-47629

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2022-48303

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2022-48468

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2022-48554

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2022-48624

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-22745

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-2602

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-2603

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-29491

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-2975

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-3446

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-36054

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-3817

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-39975

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-4408

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-44487

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-45288

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-4641

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-4692

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-4693

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-47038

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-50387

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-50868

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-5517

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-5678

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-5679

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-6004

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-6129

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-6237

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-6516

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-6597

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-6918

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-7008

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2023-7104

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-0450

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-0727

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-1048

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-1313

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-1394

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-22195

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-22365

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-24786

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-25062

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-26458

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-26461

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-28834

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-28835

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-2961

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-33599

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-33600

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-33601

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

CVE-2024-33602

Affected products

Known affected 7 products

Product	Identifier	Version
Red Hat OpenShift Service Mesh Containers <2.5.2 Red Hat / OpenShift		Service Mesh Containers <2.5.2
Red Hat Enterprise Linux 9 Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:9`	9
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Service Mesh Containers <2.4.8 Red Hat / OpenShift		Service Mesh Containers <2.4.8
Red Hat OpenShift Container Platform <4.12.72 Red Hat / OpenShift		Container Platform <4.12.72
Red Hat OpenShift Container Platform <4.14.38 Red Hat / OpenShift		Container Platform <4.14.38
Red Hat OpenShift Run Once Duration Override Operator 1 Red Hat / OpenShift	`cpe:/a:redhat:openshift:run_once_duration_override_operator_1`	Run Once Duration Override Operator 1

References

13 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://access.redhat.com/errata/RHSA-2024:3680	external
https://access.redhat.com/errata/RHSA-2024:3683	external
https://access.redhat.com/errata/RHSA-2024:3790	external
https://access.redhat.com/errata/RHSA-2024:3314	external
https://access.redhat.com/errata/RHSA-2024:1616	external
https://access.redhat.com/errata/RHSA-2024:4553	external
https://access.redhat.com/errata/RHSA-2024:7184	external
https://access.redhat.com/errata/RHSA-2024:8688	external
https://access.redhat.com/errata/RHSA-2024:8692	external
https://access.redhat.com/errata/RHSA-2024:9088	external
https://access.redhat.com/errata/RHSA-2025:0832	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Red Hat OpenShift Service Mesh Containers ausnutzen, um Dateien zu manipulieren, einen \u0027Denial of Service\u0027-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1307 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1307.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1307 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1307"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3680 vom 2024-06-06",
        "url": "https://access.redhat.com/errata/RHSA-2024:3680"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3683 vom 2024-06-06",
        "url": "https://access.redhat.com/errata/RHSA-2024:3683"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3790 vom 2024-06-11",
        "url": "https://access.redhat.com/errata/RHSA-2024:3790"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3314 vom 2024-06-13",
        "url": "https://access.redhat.com/errata/RHSA-2024:3314"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:1616 vom 2024-07-01",
        "url": "https://access.redhat.com/errata/RHSA-2024:1616"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:4553 vom 2024-07-16",
        "url": "https://access.redhat.com/errata/RHSA-2024:4553"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:7184 vom 2024-10-03",
        "url": "https://access.redhat.com/errata/RHSA-2024:7184"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:8688 vom 2024-11-06",
        "url": "https://access.redhat.com/errata/RHSA-2024:8688"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:8692 vom 2024-11-07",
        "url": "https://access.redhat.com/errata/RHSA-2024:8692"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:9088 vom 2024-11-12",
        "url": "https://access.redhat.com/errata/RHSA-2024:9088"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:0832 vom 2025-02-06",
        "url": "https://access.redhat.com/errata/RHSA-2025:0832"
      }
    ],
    "source_lang": "en-US",
    "title": "Red Hat OpenShift Service Mesh Containers: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-02-05T23:00:00.000+00:00",
      "generator": {
        "date": "2025-02-06T09:06:07.488+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.10"
        }
      },
      "id": "WID-SEC-W-2024-1307",
      "initial_release_date": "2024-06-06T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-06-06T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-06-10T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-06-13T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-06-18T22:00:00.000+00:00",
          "number": "4",
          "summary": "Korrektur Plattformauswahl"
        },
        {
          "date": "2024-06-30T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-07-15T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-10-03T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-11-06T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-11-11T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-02-05T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "10"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux",
                "product": {
                  "name": "Red Hat Enterprise Linux",
                  "product_id": "67646",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9",
                "product": {
                  "name": "Red Hat Enterprise Linux 9",
                  "product_id": "T038901",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:9"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Service Mesh Containers \u003c2.5.2",
                "product": {
                  "name": "Red Hat OpenShift Service Mesh Containers \u003c2.5.2",
                  "product_id": "T035259"
                }
              },
              {
                "category": "product_version",
                "name": "Service Mesh Containers 2.5.2",
                "product": {
                  "name": "Red Hat OpenShift Service Mesh Containers 2.5.2",
                  "product_id": "T035259-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:service_mesh_containers__2.5.2"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Service Mesh Containers \u003c2.4.8",
                "product": {
                  "name": "Red Hat OpenShift Service Mesh Containers \u003c2.4.8",
                  "product_id": "T035260"
                }
              },
              {
                "category": "product_version",
                "name": "Service Mesh Containers 2.4.8",
                "product": {
                  "name": "Red Hat OpenShift Service Mesh Containers 2.4.8",
                  "product_id": "T035260-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:service_mesh_containers__2.4.8"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Run Once Duration Override Operator 1",
                "product": {
                  "name": "Red Hat OpenShift Run Once Duration Override Operator 1",
                  "product_id": "T035698",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:run_once_duration_override_operator_1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.14.38",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.14.38",
                  "product_id": "T037940"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.14.38",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.14.38",
                  "product_id": "T037940-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.14.38"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.12.72",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.12.72",
                  "product_id": "T040822"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.12.72",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.12.72",
                  "product_id": "T040822-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.12.72"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "OpenShift"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-25220",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2021-25220"
    },
    {
      "cve": "CVE-2021-43618",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2021-43618"
    },
    {
      "cve": "CVE-2021-46848",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2021-46848"
    },
    {
      "cve": "CVE-2022-1271",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2022-1271"
    },
    {
      "cve": "CVE-2022-2795",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2022-2795"
    },
    {
      "cve": "CVE-2022-3094",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2022-3094"
    },
    {
      "cve": "CVE-2022-36227",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2022-36227"
    },
    {
      "cve": "CVE-2022-47024",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2022-47024"
    },
    {
      "cve": "CVE-2022-47629",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2022-47629"
    },
    {
      "cve": "CVE-2022-48303",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2022-48303"
    },
    {
      "cve": "CVE-2022-48468",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2022-48468"
    },
    {
      "cve": "CVE-2022-48554",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2022-48554"
    },
    {
      "cve": "CVE-2022-48624",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2022-48624"
    },
    {
      "cve": "CVE-2023-22745",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-22745"
    },
    {
      "cve": "CVE-2023-2602",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-2602"
    },
    {
      "cve": "CVE-2023-2603",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-2603"
    },
    {
      "cve": "CVE-2023-29491",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-29491"
    },
    {
      "cve": "CVE-2023-2975",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-2975"
    },
    {
      "cve": "CVE-2023-3446",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-3446"
    },
    {
      "cve": "CVE-2023-36054",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-36054"
    },
    {
      "cve": "CVE-2023-3817",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-3817"
    },
    {
      "cve": "CVE-2023-39975",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-39975"
    },
    {
      "cve": "CVE-2023-4408",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-4408"
    },
    {
      "cve": "CVE-2023-44487",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-44487"
    },
    {
      "cve": "CVE-2023-45288",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-45288"
    },
    {
      "cve": "CVE-2023-4641",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-4641"
    },
    {
      "cve": "CVE-2023-4692",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-4692"
    },
    {
      "cve": "CVE-2023-4693",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-4693"
    },
    {
      "cve": "CVE-2023-47038",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-47038"
    },
    {
      "cve": "CVE-2023-50387",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-50387"
    },
    {
      "cve": "CVE-2023-50868",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-50868"
    },
    {
      "cve": "CVE-2023-5517",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-5517"
    },
    {
      "cve": "CVE-2023-5678",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-5678"
    },
    {
      "cve": "CVE-2023-5679",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-5679"
    },
    {
      "cve": "CVE-2023-6004",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-6004"
    },
    {
      "cve": "CVE-2023-6129",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-6129"
    },
    {
      "cve": "CVE-2023-6237",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-6237"
    },
    {
      "cve": "CVE-2023-6516",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-6516"
    },
    {
      "cve": "CVE-2023-6597",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-6597"
    },
    {
      "cve": "CVE-2023-6918",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-6918"
    },
    {
      "cve": "CVE-2023-7008",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-7008"
    },
    {
      "cve": "CVE-2023-7104",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2023-7104"
    },
    {
      "cve": "CVE-2024-0450",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-0450"
    },
    {
      "cve": "CVE-2024-0727",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-0727"
    },
    {
      "cve": "CVE-2024-1048",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-1048"
    },
    {
      "cve": "CVE-2024-1313",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-1313"
    },
    {
      "cve": "CVE-2024-1394",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-1394"
    },
    {
      "cve": "CVE-2024-22195",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-22195"
    },
    {
      "cve": "CVE-2024-22365",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-22365"
    },
    {
      "cve": "CVE-2024-24786",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-24786"
    },
    {
      "cve": "CVE-2024-25062",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-25062"
    },
    {
      "cve": "CVE-2024-26458",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-26458"
    },
    {
      "cve": "CVE-2024-26461",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-26461"
    },
    {
      "cve": "CVE-2024-28834",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-28834"
    },
    {
      "cve": "CVE-2024-28835",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-28835"
    },
    {
      "cve": "CVE-2024-2961",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-2961"
    },
    {
      "cve": "CVE-2024-33599",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-33599"
    },
    {
      "cve": "CVE-2024-33600",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-33600"
    },
    {
      "cve": "CVE-2024-33601",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-33601"
    },
    {
      "cve": "CVE-2024-33602",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese Fehler bestehen in verschiedenen Komponenten und Subsystemen wie der Libksba-Library, BIND, gmp und der Tar-Paketkomponente aufgrund einer Race Condition, einer NULL-Zeiger-Dereferenz, einem Speicherzuordnungsproblem und mehr. Ein Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren, einen Denial of Service-Zustand erzuegen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen oder weitere nicht spezifizierte Angriffe durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T035259",
          "T038901",
          "67646",
          "T035260",
          "T040822",
          "T037940",
          "T035698"
        ]
      },
      "release_date": "2024-06-06T22:00:00.000+00:00",
      "title": "CVE-2024-33602"
    }
  ]
}

WID-SEC-W-2024-1488

Vulnerability from csaf_certbund - Published: 2024-06-30 22:00 - Updated: 2024-06-30 22:00

Summary

IBM InfoSphere Information Server: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: IBM InfoSphere Information Server ist eine Softwareplattform zur Integration heterogener Daten.

Angriff: Ein entfernter Angreifer kann mehrere Schwachstellen in IBM InfoSphere Information Server ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen.

Betroffene Betriebssysteme: - Sonstiges - UNIX - Windows

CVE-2020-8562

In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden.

CVE-2021-25743

CVE-2023-22102

CVE-2023-27561

CVE-2023-28642

CVE-2023-3446

CVE-2023-35022

CVE-2023-3817

CVE-2023-4759

CVE-2023-50312

CVE-2023-50952

CVE-2023-50953

CVE-2023-50954

CVE-2023-50964

CVE-2023-51775

CVE-2023-5363

CVE-2023-5678

CVE-2023-5685

CVE-2023-6129

CVE-2023-6237

CVE-2024-0727

CVE-2024-21626

CVE-2024-22329

CVE-2024-25026

CVE-2024-27268

CVE-2024-27270

CVE-2024-28794

CVE-2024-28795

CVE-2024-28797

CVE-2024-28798

CVE-2024-31898

CVE-2024-31902

CVE-2024-34062

CVE-2024-35119

CVE-2024-35195

References

23 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.ibm.com/support/pages/node/7158440	external
https://www.ibm.com/support/pages/node/7158441	external
https://www.ibm.com/support/pages/node/7159065	external
https://www.ibm.com/support/pages/node/7158448	external
https://www.ibm.com/support/pages/node/7158443	external
https://www.ibm.com/support/pages/node/7159064	external
https://www.ibm.com/support/pages/node/7159048	external
https://www.ibm.com/support/pages/node/7158595	external
https://www.ibm.com/support/pages/node/7159049	external
https://www.ibm.com/support/pages/node/7158447	external
https://www.ibm.com/support/pages/node/7158437	external
https://www.ibm.com/support/pages/node/7159057	external
https://www.ibm.com/support/pages/node/7158597	external
https://www.ibm.com/support/pages/node/7159060	external
https://www.ibm.com/support/pages/node/7158444	external
https://www.ibm.com/support/pages/node/7158408	external
https://www.ibm.com/support/pages/node/7158431	external
https://www.ibm.com/support/pages/node/7158439	external
https://www.ibm.com/support/pages/node/7158425	external
https://www.ibm.com/support/pages/node/7159066	external
https://www.ibm.com/support/pages/node/7159052	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "IBM InfoSphere Information Server ist eine Softwareplattform zur Integration heterogener Daten.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter Angreifer kann mehrere Schwachstellen in IBM InfoSphere Information Server ausnutzen, um beliebigen Programmcode auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-1488 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1488.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-1488 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1488"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7158440 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7158440"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7158441 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7158441"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7159065 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7159065"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7158448 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7158448"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7158443 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7158443"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7159064 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7159064"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7159048 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7159048"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7158595 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7158595"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7159049 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7159049"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7158447 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7158447"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7158437 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7158437"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7159057 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7159057"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7158597 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7158597"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7159060 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7159060"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7158444 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7158444"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7158408 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7158408"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7158431 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7158431"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7158439 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7158439"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7158425 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7158425"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7159066 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7159066"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7159052 vom 2024-06-30",
        "url": "https://www.ibm.com/support/pages/node/7159052"
      }
    ],
    "source_lang": "en-US",
    "title": "IBM InfoSphere Information Server: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-06-30T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:10:45.818+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2024-1488",
      "initial_release_date": "2024-06-30T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-06-30T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c11.7.1.0",
                "product": {
                  "name": "IBM InfoSphere Information Server \u003c11.7.1.0",
                  "product_id": "T035707"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c11.7.1.5",
                "product": {
                  "name": "IBM InfoSphere Information Server \u003c11.7.1.5",
                  "product_id": "T035708"
                }
              }
            ],
            "category": "product_name",
            "name": "InfoSphere Information Server"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-8562",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2020-8562"
    },
    {
      "cve": "CVE-2021-25743",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2021-25743"
    },
    {
      "cve": "CVE-2023-22102",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-22102"
    },
    {
      "cve": "CVE-2023-27561",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-27561"
    },
    {
      "cve": "CVE-2023-28642",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-28642"
    },
    {
      "cve": "CVE-2023-3446",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-3446"
    },
    {
      "cve": "CVE-2023-35022",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-35022"
    },
    {
      "cve": "CVE-2023-3817",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-3817"
    },
    {
      "cve": "CVE-2023-4759",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-4759"
    },
    {
      "cve": "CVE-2023-50312",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-50312"
    },
    {
      "cve": "CVE-2023-50952",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-50952"
    },
    {
      "cve": "CVE-2023-50953",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-50953"
    },
    {
      "cve": "CVE-2023-50954",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-50954"
    },
    {
      "cve": "CVE-2023-50964",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-50964"
    },
    {
      "cve": "CVE-2023-51775",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-51775"
    },
    {
      "cve": "CVE-2023-5363",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-5363"
    },
    {
      "cve": "CVE-2023-5678",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-5678"
    },
    {
      "cve": "CVE-2023-5685",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-5685"
    },
    {
      "cve": "CVE-2023-6129",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-6129"
    },
    {
      "cve": "CVE-2023-6237",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2023-6237"
    },
    {
      "cve": "CVE-2024-0727",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-0727"
    },
    {
      "cve": "CVE-2024-21626",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-21626"
    },
    {
      "cve": "CVE-2024-22329",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-22329"
    },
    {
      "cve": "CVE-2024-25026",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-25026"
    },
    {
      "cve": "CVE-2024-27268",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-27268"
    },
    {
      "cve": "CVE-2024-27270",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-27270"
    },
    {
      "cve": "CVE-2024-28794",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-28794"
    },
    {
      "cve": "CVE-2024-28795",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-28795"
    },
    {
      "cve": "CVE-2024-28797",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-28797"
    },
    {
      "cve": "CVE-2024-28798",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-28798"
    },
    {
      "cve": "CVE-2024-31898",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-31898"
    },
    {
      "cve": "CVE-2024-31902",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-31902"
    },
    {
      "cve": "CVE-2024-34062",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-34062"
    },
    {
      "cve": "CVE-2024-35119",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-35119"
    },
    {
      "cve": "CVE-2024-35195",
      "notes": [
        {
          "category": "description",
          "text": "In IBM InfoSphere Information Server bestehen mehrere Schwachstellen. Diese Fehler bestehen in mehreren Komponenten wie XNIO, tqdm und anderen Komponenten von Drittanbietern wie OpenSSL oder Kubernetes. Ein anonymer entfernter Angreifer oder ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, einen Denial-of-Service-Zustand zu erzeugen und vertrauliche Informationen offenzulegen. Einige dieser Schwachstellen erfordern eine Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "release_date": "2024-06-30T22:00:00.000+00:00",
      "title": "CVE-2024-35195"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-6237 (GCVE-0-2023-6237)

WID-SEC-W-2024-0093

WID-SEC-W-2024-0769

WID-SEC-W-2024-1226

WID-SEC-W-2024-1307

WID-SEC-W-2024-1488

Tags

Sightings

Nomenclature